Set up extension build and sign pipeline #11504
Merged
+98
−145
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This reverts commit 8006a85.
|
🚀 Dogfood this PR with:
curl -fsSL https://raw.githubusercontent.com/dotnet/aspire/main/eng/scripts/get-aspire-cli-pr.sh | bash -s -- 11504Or
iex "& { $(irm https://raw.githubusercontent.com/dotnet/aspire/main/eng/scripts/get-aspire-cli-pr.ps1) } 11504" |
github-actions
bot
added
the
area-engineering-systems
There was a problem hiding this comment.
Pull Request Overview
This PR sets up a CI/CD pipeline for building, signing, and publishing the VS Code extension. The changes introduce a new pipeline stage that handles the complete extension build process including dependency installation, localization, packaging, and code signing.
Key changes:
- Adds a new "build_sign_extension" stage to the Azure DevOps pipeline that runs before the native build stage
- Creates a comprehensive build template for the VS Code extension with Node.js setup, dependency management, and VSIX packaging
- Configures code signing for .vsix files using the VsixSHA2 certificate
Reviewed Changes
Copilot reviewed 4 out of 4 changed files in this pull request and generated 2 comments.
| File | Description |
|---|---|
| eng/pipelines/azure-pipelines.yml | Adds new pipeline stage for extension build and sign process |
| eng/pipelines/templates/BuildExtension.yml | Complete build template with Node.js setup, yarn operations, VSIX packaging, and signing |
| eng/Signing.props | Configures .vsix file signing with VsixSHA2 certificate and includes extension artifacts in signing targets |
| extension/loc/.gitignore | Removes gitignore entry for xliff directory |
joperezr
reviewed
Sep 19, 2025
joperezr
reviewed
Sep 19, 2025
joperezr
reviewed
Sep 19, 2025
radical
reviewed
Sep 19, 2025
radical
reviewed
Sep 19, 2025
radical
previously requested changes
Sep 22, 2025
dotnet-policy-service
bot
added
the
needs-author-action
radical
reviewed
Sep 22, 2025
dotnet-policy-service
bot
removed
the
needs-author-action
… extension on the internal pipeline
…y use the exit code to determine success or failure
radical
reviewed
Sep 23, 2025
| <ExtensionSrcDir>$(MSBuildThisFileDirectory)</ExtensionSrcDir> | ||
| </PropertyGroup> | ||
|
|
||
| <Target Name="BuildAndPackageExtension" BeforeTargets="Build" DependsOnTargets="CheckYarnInstalled;CheckVsceInstalled"> |
There was a problem hiding this comment.
For future PRs it would be useful to add Inputs/Outputs to the targets, so this can be skipped on incremental builds. It would be useful if you are doing it locally.
This reverts commit e178308.
radical
approved these changes
Sep 23, 2025
Copilot AI
pushed a commit
that referenced
this pull request
Sep 24, 2025
* first try extension CI * move above other stages * install vsce globally before package * explicitly publish extension * try add signing * try #2 * Revert "try #2" This reverts commit 8006a85. * try to fix sign * try with artifacts packages dir property * remove verification * clean up * pr suggestions * run stages in parallel * see if this runs in parallel * add restore back * rename binlog * remove extra upload step * Move building extension to msbuild from the scripts. And always build extension on the internal pipeline * fix typo * fix build * Don't try to parse errors and warnings from yarn/npm invocations. Only use the exit code to determine success or failure * try publishing vsix * update paths * update paths 2 * Revert "update paths 2" This reverts commit e178308. * fix path to publish..? --------- Co-authored-by: Ankit Jain <radical@gmail.com>
joperezr
pushed a commit
that referenced
this pull request
Sep 25, 2025
…1618) * Initial plan * Set up extension build and sign pipeline (#11504) * first try extension CI * move above other stages * install vsce globally before package * explicitly publish extension * try add signing * try #2 * Revert "try #2" This reverts commit 8006a85. * try to fix sign * try with artifacts packages dir property * remove verification * clean up * pr suggestions * run stages in parallel * see if this runs in parallel * add restore back * rename binlog * remove extra upload step * Move building extension to msbuild from the scripts. And always build extension on the internal pipeline * fix typo * fix build * Don't try to parse errors and warnings from yarn/npm invocations. Only use the exit code to determine success or failure * try publishing vsix * update paths * update paths 2 * Revert "update paths 2" This reverts commit e178308. * fix path to publish..? --------- Co-authored-by: Ankit Jain <radical@gmail.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Adam Ratzman <adam@adamratzman.com> Co-authored-by: Ankit Jain <radical@gmail.com>
joperezr
reviewed
Sep 26, 2025
| /p:Sign=$sign ` | ||
| /p:Publish=$publish ` | ||
| /p:RestoreStaticGraphEnableBinaryLogger=$binaryLog ` | ||
| /p:BuildExtension=$buildExtension ` |
There was a problem hiding this comment.
This file (and build.sh) shouldn't have been changed for this, as we shouldn't touch files under eng\common. Those get overwritten by arcade each time we update, so this shouldn't be modified, and instead we should change the files under eng\build.ps1/sh. Last night we took an arcade update which broke the build as these scripts where replaced.
cc: @adamint @radical
Fyi: @davidfowl who was asking about this.
There was a problem hiding this comment.
I fixed that up in the update-arcade Pr.
5 tasks
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
3 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
Adds a new stage that builds, signs, and publishes the extension vsix.
@radical
Checklist
<remarks />and<code />elements on your triple slash comments?doc-ideatemplatebreaking-changetemplatediagnostictemplate