Skip to content

[v7.1.0-preview1] ESRP Nuget Signing Path Fix#4249

Merged
benrr101 merged 1 commit intomainfrom
dev/russellben/esrp-bs-part3
Apr 30, 2026
Merged

[v7.1.0-preview1] ESRP Nuget Signing Path Fix#4249
benrr101 merged 1 commit intomainfrom
dev/russellben/esrp-bs-part3

Conversation

@benrr101
Copy link
Copy Markdown
Contributor

@benrr101 benrr101 commented Apr 30, 2026

Description

An artifact of the churn in pipelines lately. Packages were being copied to PACK_OUTPUT, and that's where ESRP signing was pulling from. Indeed, it found two nuget package files and it signed them. But the problem is 1) PACK_OUTPUT isn't published as the build artifacts, BUILD_OUTPUT is, and the nuget package files in that folder aren't being signed, and 2) PACK_OUTPUT isn't even defined anymore, so it's literally copying them to $(PACK_OUTPUT).

This fixes the issue by removing the step to copy to PACK_OUTPUT, and changes ESRP nuget signing to point at BUILD_OUTPUT. 🤖 has verified this should fix everything.

@benrr101 benrr101 added this to the 7.1.0-preview1 milestone Apr 30, 2026
@benrr101 benrr101 requested a review from a team as a code owner April 30, 2026 03:00
Copilot AI review requested due to automatic review settings April 30, 2026 03:00
@github-project-automation github-project-automation Bot moved this to To triage in SqlClient Board Apr 30, 2026
@benrr101 benrr101 enabled auto-merge (squash) April 30, 2026 03:05
apoorvdeshmukh
apoorvdeshmukh approved these changes Apr 30, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@apoorvdeshmukh apoorvdeshmukh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM! :shipit:

Copilot AI reviewed Apr 30, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Fixes OneBranch ESRP NuGet signing to sign the packages that are actually published as build artifacts by removing the obsolete PACK_OUTPUT copy step and pointing ESRP NuGet signing at $(BUILD_OUTPUT) instead.

Changes:

  • Removed the CopyFiles step that copied .nupkg/.snupkg files to the no-longer-defined $(PACK_OUTPUT).
  • Updated ESRP NuGet signing to search under $(BUILD_OUTPUT) with a recursive minimatch pattern.
  • Updated step header comment to no longer reference copying packages to $(PACK_OUTPUT).

Reviewed changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated 3 comments.

File Description
eng/pipelines/onebranch/steps/pack-buildproj-step.yml Removes the PACK_OUTPUT copy step so pack output remains in $(BUILD_OUTPUT) for later artifact publishing/signing.
eng/pipelines/onebranch/jobs/build-buildproj-job.yml Adjusts ESRP NuGet signing to scan $(BUILD_OUTPUT) and match packages recursively.

Comment thread eng/pipelines/onebranch/steps/pack-buildproj-step.yml
Comment thread eng/pipelines/onebranch/jobs/build-buildproj-job.yml
Comment thread eng/pipelines/onebranch/jobs/build-buildproj-job.yml
@benrr101 benrr101 merged commit d6e20fc into main Apr 30, 2026
11 checks passed
@benrr101 benrr101 deleted the dev/russellben/esrp-bs-part3 branch April 30, 2026 04:20
@github-project-automation github-project-automation Bot moved this from To triage to Done in SqlClient Board Apr 30, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@apoorvdeshmukh apoorvdeshmukh apoorvdeshmukh approved these changes

@priyankatiwari08 priyankatiwari08 priyankatiwari08 approved these changes

Assignees

No one assigned

Labels

None yet

Projects

SqlClient Board
Status: Done

Milestone

7.1.0-preview1

Development

Successfully merging this pull request may close these issues.

4 participants

@benrr101 @apoorvdeshmukh @priyankatiwari08