Skip to content

actionhippie/gpgsign

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

gpgsign

Current Tag Docker Build

GitHub Action to sign artifacts or any file with GnuPG.

Usage

name: Example

on:
  - push
  - pull_request

jobs:
  test:
    runs-on: ubuntu-latest

    steps:
      - uses: actions/checkout@v2

      - uses: actionhippie/gpgsign@v1
        with:
          private_key: ${{ secrets.GNUPG_KEY }}
          passphrase: ${{ secrets.GNUPG_PASSPHRASE }}
          detach_sign: true
          files: |
            dist/*
          excludes: |
            dist/*.sha256

Inputs

private_key

Private GPG key used for signing

passphrase

Passphrase for the GPG key

armor

Create ASCII armored output, defaults to true

detach_sign

Make a detached signature

clear_sign

Make a clear text signature

files

List of files to create a signature

excludes

List of files to exclude from signing

Outputs

None

Security

If you find a security issue please contact [email protected] first.

Contributing

Fork -> Patch -> Push -> Pull Request

Authors

License

Apache-2.0

Copyright

Copyright (c) 2022 Thomas Boerger <[email protected]>