feat: more debugging, version printing

.github/workflows/selftest.yml

@@ -22,6 +22,7 @@ jobs:
         id: sigstore-python
         with:
           inputs: ./test/artifact.txt
+          internal-be-careful-debug: true
       - name: Check outputs
         run: |
           [[ -f ./test/artifact.txt.sigstore ]] || exit 1
@@ -44,6 +45,7 @@ jobs:
         id: sigstore-python
         with:
           inputs: ${{ matrix.input }}
+          internal-be-careful-debug: true
       - name: Check failure
         env:
           XFAIL: ${{ steps.sigstore-python.outcome == 'failure' }}
@@ -64,6 +66,7 @@ jobs:
         with:
           inputs: ./test/artifact.txt
           staging: true
+          internal-be-careful-debug: true
       - name: Check outputs
         run: |
           [[ -f ./test/artifact.txt.sigstore ]] || exit 1
@@ -79,6 +82,7 @@ jobs:
         with:
           inputs: ./test/*.txt
           staging: true
+          internal-be-careful-debug: true
 
   selftest-upload-artifacts:
     runs-on: ubuntu-latest
@@ -92,6 +96,7 @@ jobs:
           inputs: ./test/artifact.txt
           staging: true
           upload-signing-artifacts: true
+          internal-be-careful-debug: true
       - uses: actions/download-artifact@v3
         with:
           name: "signing-artifacts-${{ github.job }}"
@@ -116,6 +121,7 @@ jobs:
           certificate: ./test/custom_certificate.crt
           bundle: ./test/custom_bundle.sigstore
           staging: true
+          internal-be-careful-debug: true
       - name: Check outputs
         run: |
           [[ -f ./test/custom_signature.sig ]] || exit 1
@@ -136,6 +142,7 @@ jobs:
           verify-cert-identity: https://github.com/sigstore/gh-action-sigstore-python/.github/workflows/selftest.yml@${{ github.ref }}
           verify-oidc-issuer: https://token.actions.githubusercontent.com
           staging: true
+          internal-be-careful-debug: true
 
   selftest-xfail-verify-missing-options:
     runs-on: ubuntu-latest
@@ -172,6 +179,8 @@ jobs:
           verify-oidc-issuer: ${{ matrix.config.verify-oidc-issuer }}
           verify-cert-identity: ${{ matrix.config.verify-cert-identity }}
           staging: true
+          internal-be-careful-debug: true
+
       - name: Check failure
         env:
           XFAIL: ${{ steps.sigstore-python.outcome == 'failure' }}
@@ -204,6 +213,7 @@ jobs:
           inputs: ./test/artifact.txt
           identity-token: ${{ steps.get-oidc-token.outputs.identity-token }}
           staging: true
+          internal-be-careful-debug: true
 
   all-selftests-pass:
     if: always()

action.yml

@@ -102,6 +102,8 @@ runs:
       run: |
         # NOTE: Sourced, not executed as a script.
         source "${{ github.action_path }}/setup/setup.bash"
+      env:
+        GHA_SIGSTORE_PYTHON_INTERNAL_BE_CAREFUL_DEBUG: "${{ inputs.internal-be-careful-debug }}"
       shell: bash
 
     - name: Run sigstore-python

setup/setup.bash

@@ -21,6 +21,15 @@ die() {
   exit 1
 }
 
+debug() {
+  if [[ "${GHA_SIGSTORE_PYTHON_INTERNAL_BE_CAREFUL_DEBUG}" = "true" ]]; then
+    echo -e "\033[93mDEBUG: ${1}\033[0m"
+  fi
+}
+
+debug "Python: $(python -V)"
+debug "pip: $(python -m pip --version)"
+
 # NOTE: This file is meant to be sourced, not executed as a script.
 if [[ "${0}" == "${BASH_SOURCE[0]}" ]]; then
   die "Internal error: setup harness was executed instead of being sourced?"