Enable GPG Signing
ActionsSet up git to enable GPG signing for commits and tags created within actions workflows to be trusted and verified.
v2.0.1
LatestBy creshpay
Tags
(2)This action sets up a GPG signature for use in actions so you can have verified commits pushed from your actions.
Your runner should provide a valid gpg installation.
See action.yml
Basic:
steps:
- name: Checkout repository
uses: actions/checkout@v2
with:
token: ${{ secrets.GITHUB_TOKEN }}
- name: Enable GPG
uses: creshpay/action-gpg@v2
with:
gpg-passphrase: "${{ secrets.CI_GPG_PASSPHRASE }}"
gpg-sign-key: "${{ secrets.CI_GPG_SIGN_KEY }}"
git-email: "${{ vars.CI_USER_EMAIL }}"
git-username: "${{ vars.CI_USER_NAME }}"
# See https://github.com/cresh-io/action-conventional-release
- name: Create release
uses: creshpay/action-conventional-release@v1
with:
custom-tag: "${{ github.event.inputs.tags }}"
github-access-token: "${{ secrets.GITHUB_TOKEN }}"The scripts and documentation in this project are released under the MIT License
Enable GPG Signing is not certified by GitHub. It is provided by a third-party and is governed by separate terms of service, privacy policy, and support documentation.
About
v2.0.1
LatestBy creshpay
Tags
(2)Enable GPG Signing is not certified by GitHub. It is provided by a third-party and is governed by separate terms of service, privacy policy, and support documentation.