chore: general updates gathered for `1.0.0-alpha7` release #43

	name: Publish

	on:
	push:
	tags:
	- "*"

	jobs:
	gradle:
	runs-on: ubuntu-latest
	env:
	GRADLE_PUBLISH_KEY: ${{ secrets.GRADLE_PUBLISH_KEY }}
	GRADLE_PUBLISH_SECRET: ${{ secrets.GRADLE_PUBLISH_SECRET }}
	if: ${{ !contains(github.event.head_commit.message, 'ci skip') }}
	steps:
	- name: Harden Runner
	uses: step-security/harden-runner@cba0d00b1fc9a034e1e642ea0f1103c282990604 # v2.5.0
	with:
	egress-policy: audit
	- name: Checkout Repo
	uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
	- name: "Setup: Node"
	uses: actions/setup-node@64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c # v3
	with:
	node-version: 18
	- name: "Setup: Yarn"
	run: npm install -g [email protected] && yarn
	- name: Cache Gradle Caches
	uses: gradle/gradle-build-action@a4cf152f482c7ca97ef56ead29bf08bcd953284c # v2.7.0
	- name: "Setup: Signing Keys"
	run: \|
	cat <(echo -e "${{ secrets.SIGNING_KEY }}") \| base64 -d \| gpg --batch --import
	gpg --list-secret-keys --keyid-format LONG
	gpg --export-secret-keys > /home/runner/.gnupg/secring.gpg
	- name: Run Gradle tasks
	run: ./gradlew preMerge --continue --dependency-verification=lenient
	- name: Publish on Plugin Portal
	if: success()
	run: \|
	./gradlew \
	--info \
	--project-dir plugin-build \
	--dependency-verification=lenient \
	-PenableSigning=true \
	-Psigning.keyId=${{ secrets.SIGNING_KEY_ID }} \
	-Psigning.password=${{ secrets.SIGNING_KEY_PASSPHRASE }} \
	-Psigning.secretKeyRingFile=/home/runner/.gnupg/secring.gpg \
	setupPluginUploadFromEnvironment publishPlugins

Provide feedback