I can not install version 1.3.9
sfederl opened this issue · 7 comments
Describe the bug
When I try to install version 1.3.8 or higher I always get this message:
WARNING: Terraform version 1.3.9 not found.
Exception: Terraform 1.3.9 fail to pass Code Signature test. Uninstalling.
To Reproduce
Steps to reproduce the behavior:
- install-terraform -tfversion 1.3.8 or higher
Expected behavior
Install Terraform version 1.3.8 or higher
Output
WARNING: Terraform version 1.3.9 not found.
Exception: Terraform 1.3.9 fail to pass Code Signature test. Uninstalling.
Desktop (please complete the following information):
- OS: Windows 11
- Version 22H2 Build 22621.14.13
Additional context
Add any other context about the problem here.
Looks like as of 1.3.8 this is a new thumbprint for the Authenticode. You can update the thumbprint in your config if you trust it. I can't find a matching thumbprint on this page. https://www.hashicorp.com/security I suspect they just need to update it. I emailed security at hashicorp to confirm.
Can you help me, how the update the thumbprint for this module?
It would look something like this
Set-TerraformConfiguration -Configuration @{'HashiCorpWindowsThumbprint' = 'thumbprint2' } -Confirm:$false
Replace thumbprint2 with the one you trust.
When i add the new Thumbprint then i can install the version 1.3.8 but i can´t use 1.3.7. Can i add the two Thumbprints?
Or ignore the Thumbprints?
Thanks for help!
The PR I have right now will allow for a string of thumbprints. I am waiting to hear back from Hashicorp before I publish the update.
Issue should be fixed in 0.6.2. https://www.powershellgallery.com/packages/Invoke-Terraform/0.6.2
Now i can install version 1.3.8 but not was older is as 1.3.7
