# Create the .tauri directory in your home folder (if it doesn't exist)
mkdir -p ~/.tauri
# Generate a cryptographically secure password
PASSWORD=$(openssl rand -base64 32)
# Display the password (save this securely - you'll need it for signing)
echo "Your signing key password: $PASSWORD"
# Generate new Tauri signing keys
tauri signer generate -p "$PASSWORD" -w ~/.tauri/thunderbolt.key
# The keys will be created at:
# Private key: ~/.tauri/thunderbolt.key (Keep this secret!)
# Public key: ~/.tauri/thunderbolt.key.pub- Never share your private key with anyone
- Never commit the private key to version control
- Store the password securely (password manager recommended)
- If you lose the private key or password, you won't be able to sign updates
Set these environment variables when signing:
export TAURI_SIGNING_PRIVATE_KEY="$HOME/.tauri/thunderbolt.key"
export TAURI_SIGNING_PRIVATE_KEY_PASSWORD="your-password-here"