.azure-pipelines/release.yml: add .NET Tool release pipeline

mjcheetham · mjcheetham · commit 500db35ee009 · 2025-09-24T16:16:03.000+01:00
Add a release pipeline for the .NET Tool using Azure Pipelines.

Signed-off-by: Matthew John Cheetham &lt;mjcheetham@outlook.com&gt;
diff --git a/.azure-pipelines/release.yml b/.azure-pipelines/release.yml
@@ -448,3 +448,109 @@ extends:
                 #           "Parameters": {}
                 #         }
                 #       ]
+
+          #
+          # .NET Tool / NuGet Package build jobs
+          #
+          - job: nuget_package
+            displayName: '.NET Tool NuGet Package'
+            pool:
+              name: GitClient-1ESHostedPool-intel-pc
+              image: ubuntu-x86_64-ado1es
+              os: linux
+            variables:
+              version: $[stageDependencies.prebuild.vars.outputs['version.value']]
+            templateContext:
+              outputs:
+                - output: pipelineArtifact
+                  targetPath: '$(Build.ArtifactStagingDirectory)/payload'
+                  artifactName: 'nuget_payload'
+                - output: pipelineArtifact
+                  targetPath: '$(Build.ArtifactStagingDirectory)/packages'
+                  artifactName: 'nuget_packages'
+            steps:
+              - checkout: self
+              - task: UseDotNet@2
+                displayName: 'Use .NET 8 SDK'
+                inputs:
+                  packageType: sdk
+                  version: '8.x'
+              - task: Bash@3
+                displayName: 'Build payload'
+                inputs:
+                  targetType: filePath
+                  filePath: './src/shared/DotnetTool/layout.sh'
+                  arguments: |
+                    --configuration="Release" \
+                    --output="$(Build.ArtifactStagingDirectory)/payload"
+                # - task: EsrpCodeSigning@5
+                #   condition: and(succeeded(), eq('${{ parameters.esrp }}', true))
+                #   displayName: 'Sign payload'
+                #   inputs:
+                #     connectedServiceName: '$(esrpConnectionName)'
+                #     appRegistrationClientId: '$(esrpClientId)'
+                #     appRegistrationTenantId: '$(esrpTenantId)'
+                #     authAkvName: '$(esrpAuthAkvName)'
+                #     authCertName: '$(esrpAuthCertName)'
+                #     authSignCertName: '$(esrpAuthSignCertName)'
+                #     serviceEndpointUrl: '$(esrpEndpointUrl)'
+                #     folderPath: '$(Build.ArtifactStagingDirectory)/payload'
+                #     pattern: '**\*.exe;**\*.dll'
+                #     signConfigType: inlineSignParams
+                #     inlineOperation: |
+                #       [
+                #         {
+                #           "KeyCode": "CP-230012",
+                #           "OperationCode": "SigntoolSign",
+                #           "ToolName": "sign",
+                #           "ToolVersion": "1.0",
+                #           "Parameters": {
+                #             "OpusName": "Microsoft",
+                #             "OpusInfo": "https://www.microsoft.com",
+                #             "FileDigest": "/fd SHA256",
+                #             "PageHash": "/NPH",
+                #             "TimeStamp": "/tr \"http://rfc3161.gtm.corp.microsoft.com/TSS/HttpTspServer\" /td sha256"
+                #           }
+                #         },
+                #         {
+                #           "KeyCode": "CP-230012",
+                #           "OperationCode": "SigntoolVerify",
+                #           "ToolName": "sign",
+                #           "ToolVersion": "1.0",
+                #           "Parameters": {}
+                #         }
+                #       ]
+              - task: Bash@3
+                displayName: 'Create NuGet package'
+                inputs:
+                  targetType: filePath
+                  filePath: './src/shared/DotnetTool/pack.sh'
+                  arguments: |
+                    --configuration=Release \
+                    --version="$(version)" \
+                    --package-root="$(Build.ArtifactStagingDirectory)/payload" \
+                    --output="$(Build.ArtifactStagingDirectory)/packages"
+                # - task: EsrpCodeSigning@5
+                #   condition: and(succeeded(), eq('${{ parameters.esrp }}', true))
+                #   displayName: 'Sign payload'
+                #   inputs:
+                #     connectedServiceName: '$(esrpConnectionName)'
+                #     appRegistrationClientId: '$(esrpClientId)'
+                #     appRegistrationTenantId: '$(esrpTenantId)'
+                #     authAkvName: '$(esrpAuthAkvName)'
+                #     authCertName: '$(esrpAuthCertName)'
+                #     authSignCertName: '$(esrpAuthSignCertName)'
+                #     serviceEndpointUrl: '$(esrpEndpointUrl)'
+                #     folderPath: '$(Build.ArtifactStagingDirectory)/packages'
+                #     pattern: '**/*'
+                #     signConfigType: inlineSignParams
+                #     inlineOperation: |
+                #       [
+                #         {
+                #           "KeyCode": "CP-401405",
+                #           "OperationCode": "NuGetSign",
+                #           "ToolName": "sign",
+                #           "ToolVersion": "1.0",
+                #           "Parameters": {}
+                #         }
+                #       ]
