From 25d9191cbdcbcdf0b73474d320df01ccd1aeb304 Mon Sep 17 00:00:00 2001 From: jadamcrain Date: Wed, 17 Jun 2026 15:01:22 -0700 Subject: [PATCH] Fix GPG signing in release-maven job Port fixes from rodbus: use the underscore input name gpg_private_key expected by ghaction-import-gpg@v7, and select the signing key explicitly by fingerprint via --local-user. --- .github/workflows/ci.yml | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 026eaf28..4ad2ef66 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -425,9 +425,10 @@ jobs: path: artifacts pattern: java-bindings-* - name: Import PGP key + id: import_gpg uses: crazy-max/ghaction-import-gpg@v7 with: - gpg-private-key: ${{ secrets.SFIO_PGP_PRIVATE_KEY }} + gpg_private_key: ${{ secrets.SFIO_PGP_PRIVATE_KEY }} passphrase: ${{ secrets.SFIO_PGP_PRIVATE_KEY_PASSPHRASE }} - name: Deploy Java to Maven Central shell: bash @@ -457,7 +458,7 @@ jobs: # Sign all files cd io/stepfunc/dnp3/${{github.ref_name}} for file in *.jar *.pom; do - gpg --batch --yes --pinentry-mode loopback --passphrase "${{ secrets.SFIO_PGP_PRIVATE_KEY_PASSPHRASE }}" --armor --detach-sign "$file" + gpg --batch --yes --pinentry-mode loopback --local-user "${{ steps.import_gpg.outputs.fingerprint }}" --passphrase "${{ secrets.SFIO_PGP_PRIVATE_KEY_PASSPHRASE }}" --armor --detach-sign "$file" done # Generate checksums