Skip to content

Instantly share code, notes, and snippets.

@aaronpk
Created February 19, 2019 23:14
Show Gist options
  • Save aaronpk/436bbfcf57644f1c8d6a230326c546bd to your computer and use it in GitHub Desktop.
Save aaronpk/436bbfcf57644f1c8d6a230326c546bd to your computer and use it in GitHub Desktop.
#!/bin/sh
EXPECTED_SIGNATURE="$(wget -q -O - https://composer.github.io/installer.sig)"
php -r "copy('https://getcomposer.org/installer', 'composer-setup.php');"
ACTUAL_SIGNATURE="$(php -r "echo hash_file('sha384', 'composer-setup.php');")"
if [ "$EXPECTED_SIGNATURE" != "$ACTUAL_SIGNATURE" ]
then
>&2 echo 'ERROR: Invalid installer signature'
rm composer-setup.php
exit 1
fi
php composer-setup.php --quiet
RESULT=$?
rm composer-setup.php
exit $RESULT
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment