From b5ef2d1b749a4b8604994040d71163dc3fd6a6d9 Mon Sep 17 00:00:00 2001 From: Christophe Amory Date: Mon, 24 Nov 2025 14:37:37 +0100 Subject: [PATCH] fix: add GPG secrets to validation job for artifact signing --- .github/workflows/release.yml | 12 +++++++++++- 1 file changed, 11 insertions(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 2bf50b5..3ac4c48 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -43,6 +43,10 @@ jobs: distribution: temurin java-version: '17' cache: maven + gpg-private-key: ${{ secrets.GPG_SIGNING_KEY }} + gpg-passphrase: MAVEN_GPG_PASSPHRASE + env: + MAVEN_GPG_PASSPHRASE: ${{ secrets.GPG_SIGNING_KEY_PASSWORD }} - name: Set project version working-directory: ${{ matrix.module }} @@ -66,6 +70,8 @@ jobs: - name: Verify build working-directory: ${{ matrix.module }} run: ./mvnw -B -ntp -Pci-release verify + env: + MAVEN_GPG_PASSPHRASE: ${{ secrets.GPG_SIGNING_KEY_PASSWORD }} publish-modules: name: Publish ${{ matrix.module }} @@ -94,6 +100,10 @@ jobs: server-password: MAVEN_PASSWORD gpg-private-key: ${{ secrets.GPG_SIGNING_KEY }} gpg-passphrase: MAVEN_GPG_PASSPHRASE + env: + MAVEN_GPG_PASSPHRASE: ${{ secrets.GPG_SIGNING_KEY_PASSWORD }} + MAVEN_USERNAME: ${{ secrets.MAVEN_USERNAME }} + MAVEN_PASSWORD: ${{ secrets.MAVEN_PASSWORD }} - name: Set project version working-directory: ${{ matrix.module }} @@ -103,9 +113,9 @@ jobs: working-directory: ${{ matrix.module }} run: ./mvnw -B -ntp -Pci-release deploy -DskipTests env: + MAVEN_GPG_PASSPHRASE: ${{ secrets.GPG_SIGNING_KEY_PASSWORD }} MAVEN_USERNAME: ${{ secrets.MAVEN_USERNAME }} MAVEN_PASSWORD: ${{ secrets.MAVEN_PASSWORD }} - MAVEN_GPG_PASSPHRASE: ${{ secrets.GPG_SIGNING_KEY_PASSWORD }} publish-docker-image: name: Build and publish Docker image