https://github.com/actionhippie/gpgsign
Action to sign artifacts or any file with GnuPG
https://github.com/actionhippie/gpgsign
action github
Last synced: about 2 months ago
JSON representation
Action to sign artifacts or any file with GnuPG
- Host: GitHub
- URL: https://github.com/actionhippie/gpgsign
- Owner: actionhippie
- License: apache-2.0
- Created: 2022-03-02T10:30:03.000Z (over 4 years ago)
- Default Branch: master
- Last Pushed: 2024-04-08T08:19:35.000Z (about 2 years ago)
- Last Synced: 2024-04-08T09:51:11.440Z (about 2 years ago)
- Topics: action, github
- Language: Shell
- Homepage:
- Size: 65.4 KB
- Stars: 0
- Watchers: 1
- Forks: 0
- Open Issues: 1
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- License: LICENSE
Awesome Lists containing this project
README
# gpgsign
[](https://github.com/actionhippie/gpgsign) [](https://github.com/actionhippie/gpgsign/actions/workflows/docker.yml)
[GitHub Action](https://github.com/features/actions) to sign artifacts or any file with GnuPG.
## Usage
```yml
name: Example
on:
- push
- pull_request
jobs:
test:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
- uses: actionhippie/gpgsign@v1
with:
private_key: ${{ secrets.GNUPG_KEY }}
passphrase: ${{ secrets.GNUPG_PASSPHRASE }}
detach_sign: true
files: |
dist/*
excludes: |
dist/*.sha256
```
## Inputs
### `private_key`
Private GPG key used for signing
### `passphrase`
Passphrase for the GPG key
### `armor`
Create ASCII armored output, defaults to `true`
### `detach_sign`
Make a detached signature
### `clear_sign`
Make a clear text signature
### `files`
List of files to create a signature
### `excludes`
List of files to exclude from signing
## Outputs
None
## Security
If you find a security issue please contact thomas@webhippie.de first.
## Contributing
Fork -> Patch -> Push -> Pull Request
## Authors
* [Thomas Boerger](https://github.com/tboerger)
## License
Apache-2.0
## Copyright
```console
Copyright (c) 2022 Thomas Boerger
```