You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
To generate a GPG key in a GitHub Actions workflow and then use it to sign an RPM package, you can create a workflow with the following steps. This example workflow uses a passphrase for the GPG key, and it signs an RPM package with the generated key.
In this example, the GPG key is generated using the gpg --quick-generate-key command. You can customize the parameters as needed.
Set the GPG_PASSPHRASE and GPG_PRIVATE_KEY secrets in your GitHub repository settings.
Go to your repository on GitHub > Settings > Secrets > New repository secret, and add GPG_PASSPHRASE and GPG_PRIVATE_KEY with their respective values.
Now, when you push changes to your repository, the "Generate GPG Key" workflow will run first to generate the GPG key. After that, the "Generate GPG Key and Sign RPM" workflow will run to sign the RPM package with the generated GPG key.
Adjust the workflow files and settings according to your specific requirements.
The text was updated successfully, but these errors were encountered:
To generate a GPG key in a GitHub Actions workflow and then use it to sign an RPM package, you can create a workflow with the following steps. This example workflow uses a passphrase for the GPG key, and it signs an RPM package with the generated key.
Create a GPG key:
Generate a GPG key in a separate workflow:
Create another workflow file (e.g.,
.github/workflows/generate-gpg-key.yml
) to generate the GPG key:In this example, the GPG key is generated using the
gpg --quick-generate-key
command. You can customize the parameters as needed.Set the GPG_PASSPHRASE and GPG_PRIVATE_KEY secrets in your GitHub repository settings.
Go to your repository on GitHub > Settings > Secrets > New repository secret, and add
GPG_PASSPHRASE
andGPG_PRIVATE_KEY
with their respective values.Now, when you push changes to your repository, the "Generate GPG Key" workflow will run first to generate the GPG key. After that, the "Generate GPG Key and Sign RPM" workflow will run to sign the RPM package with the generated GPG key.
Adjust the workflow files and settings according to your specific requirements.
The text was updated successfully, but these errors were encountered: