From 00f71dc35e4499b559a99cdc63cf5865fb543c19 Mon Sep 17 00:00:00 2001 From: Roger Barker Date: Mon, 16 Jun 2025 14:10:57 -0500 Subject: [PATCH 1/4] chore: Update gh-pages-sync.yaml to include GPG config Signed-off-by: Roger Barker --- .github/workflows/gh-pages-sync.yaml | 14 ++++++++++++++ .github/workflows/release-automation.yml | 2 ++ 2 files changed, 16 insertions(+) diff --git a/.github/workflows/gh-pages-sync.yaml b/.github/workflows/gh-pages-sync.yaml index cd4f4cae6a..e49f7be326 100644 --- a/.github/workflows/gh-pages-sync.yaml +++ b/.github/workflows/gh-pages-sync.yaml @@ -12,6 +12,8 @@ defaults: permissions: contents: write + pages: write + id-token: write jobs: sync: @@ -32,6 +34,18 @@ jobs: fetch-depth: "0" token: ${{ secrets.GH_ACCESS_TOKEN_HG }} + - name: Import GPG Key + id: gpg_importer + uses: step-security/ghaction-import-gpg@a7c87df2279f2bf2e69ba8289dfbf35fe05a4e08 # v1.0.0 + with: + git_commit_gpgsign: true + git_committer_email: ${{ vars.GIT_USER_EMAIL }} + git_committer_name: ${{ vars.GIT_USER_NAME }} + git_tag_gpgsign: true + git_user_signingkey: true + gpg_private_key: ${{ secrets.GPG_KEY_CONTENTS }} + passphrase: ${{ secrets.GPG_KEY_PASSPHRASE }} + - name: Add Remote run: git remote add HIERO https://github.com/hiero-ledger/hiero-json-rpc-relay.git diff --git a/.github/workflows/release-automation.yml b/.github/workflows/release-automation.yml index 8df355c473..df32269f94 100644 --- a/.github/workflows/release-automation.yml +++ b/.github/workflows/release-automation.yml @@ -62,6 +62,8 @@ jobs: uses: step-security/ghaction-import-gpg@a7c87df2279f2bf2e69ba8289dfbf35fe05a4e08 # v1.0.0 with: git_commit_gpgsign: true + git_committer_email: ${{ vars.GIT_USER_EMAIL }} + git_committer_name: ${{ vars.GIT_USER_NAME }} git_tag_gpgsign: true git_user_signingkey: true gpg_private_key: ${{ secrets.GPG_KEY_CONTENTS }} From bb5cae7fbdc4b0d81a51848544269728888b2568 Mon Sep 17 00:00:00 2001 From: Roger Barker Date: Mon, 16 Jun 2025 14:12:45 -0500 Subject: [PATCH 2/4] Remove unnecessary permissions Signed-off-by: Roger Barker --- .github/workflows/gh-pages-sync.yaml | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/.github/workflows/gh-pages-sync.yaml b/.github/workflows/gh-pages-sync.yaml index e49f7be326..1db5acf90b 100644 --- a/.github/workflows/gh-pages-sync.yaml +++ b/.github/workflows/gh-pages-sync.yaml @@ -11,9 +11,7 @@ defaults: shell: bash permissions: - contents: write - pages: write - id-token: write + contents: read jobs: sync: From ee77beb11bf4549b88b96efe2d632382b069de2a Mon Sep 17 00:00:00 2001 From: Roger Barker Date: Mon, 16 Jun 2025 14:20:17 -0500 Subject: [PATCH 3/4] Update var Signed-off-by: Roger Barker --- .github/workflows/gh-pages-sync.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/gh-pages-sync.yaml b/.github/workflows/gh-pages-sync.yaml index 1db5acf90b..25daa37352 100644 --- a/.github/workflows/gh-pages-sync.yaml +++ b/.github/workflows/gh-pages-sync.yaml @@ -37,7 +37,7 @@ jobs: uses: step-security/ghaction-import-gpg@a7c87df2279f2bf2e69ba8289dfbf35fe05a4e08 # v1.0.0 with: git_commit_gpgsign: true - git_committer_email: ${{ vars.GIT_USER_EMAIL }} + git_committer_email: ${{ vars.GIT_SW_USER_EMAIL }} git_committer_name: ${{ vars.GIT_USER_NAME }} git_tag_gpgsign: true git_user_signingkey: true From f08d44ecc953d5df42fbdd2c6b62b76619a38ab0 Mon Sep 17 00:00:00 2001 From: Roger Barker Date: Mon, 16 Jun 2025 14:39:44 -0500 Subject: [PATCH 4/4] Update GPG stuff Signed-off-by: Roger Barker --- .github/workflows/gh-pages-sync.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/gh-pages-sync.yaml b/.github/workflows/gh-pages-sync.yaml index 25daa37352..1db5acf90b 100644 --- a/.github/workflows/gh-pages-sync.yaml +++ b/.github/workflows/gh-pages-sync.yaml @@ -37,7 +37,7 @@ jobs: uses: step-security/ghaction-import-gpg@a7c87df2279f2bf2e69ba8289dfbf35fe05a4e08 # v1.0.0 with: git_commit_gpgsign: true - git_committer_email: ${{ vars.GIT_SW_USER_EMAIL }} + git_committer_email: ${{ vars.GIT_USER_EMAIL }} git_committer_name: ${{ vars.GIT_USER_NAME }} git_tag_gpgsign: true git_user_signingkey: true