Fix for Snapshot publication is broken after adding PGP signing #405 (

#407) * Add PGP signing to publications Introduce Pretty Good Privacy (PGP) signing to the publication workflows of the project. The signing setup is included in the gradle wiring along with the retrieval of the key details from environment variables. This change is applied in both the publish and hotfix workflows. * Update key retrieval in build script and workflow file * Add PGP keys to GitHub Actions workflow The commit adds PGP_PASSWORD and PGP_PRIVATE_KEY to the environment variables in the publication workflow. These additions permit secure, authenticated signing of packages before publication.
JetBrains · Jun 13, 2024 · ea14724 · ea14724
1 parent 9343c54
commit ea14724
Showing 1 changed file with 2 additions and 0 deletions.
diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
@@ -31,6 +31,8 @@ jobs:
         env:
           MAVEN_SPACE_USERNAME: ${{secrets.MAVEN_SPACE_USERNAME}}
           MAVEN_SPACE_PASSWORD: ${{secrets.MAVEN_SPACE_PASSWORD}}
+          PGP_PASSWORD: ${{secrets.PGP_PASSWORD}}
+          PGP_PRIVATE_KEY: ${{secrets.PGP_PRIVATE_KEY}}
 
   publish-older:
     name: Publish older IJP version(s)