Sign release tarball with PGP key (#392)
This commit is contained in:
Ajay Bura
parent
0776a04362
commit
b7c322d473
1 changed files with 8 additions and 0 deletions
8
.github/workflows/prod-deploy.yml
vendored
8
.github/workflows/prod-deploy.yml
vendored
|
|
@ -25,11 +25,19 @@ jobs:
|
|||
run: echo ::set-output name=tag::${GITHUB_REF#refs/*/}
|
||||
- name: Create tar.gz
|
||||
run: tar -czvf cinny-${{ steps.vars.outputs.tag }}.tar.gz dist
|
||||
- name: Sign tar.gz
|
||||
uses: actionhippie/gpgsign@4e28208b142cae93e1582401dcda1cf79e4f72c0
|
||||
with:
|
||||
private_key: ${{ secrets.GNUPG_KEY }}
|
||||
passphrase: ${{ secrets.GNUPG_PASSPHRASE }}
|
||||
detach_sign: true
|
||||
files: cinny-${{ steps.vars.outputs.tag }}.tar.gz
|
||||
- name: Upload tagged release
|
||||
uses: softprops/action-gh-release@1e07f4398721186383de40550babbdf2b84acfc5
|
||||
with:
|
||||
files: |
|
||||
cinny-${{ steps.vars.outputs.tag }}.tar.gz
|
||||
cinny-${{ steps.vars.outputs.tag }}.tar.gz.asc
|
||||
|
||||
push_to_dockerhub:
|
||||
name: Push Docker image to Docker Hub
|
||||
|
|
|
|||
Loading…
Reference in a new issue