Skip to content

Commit f43700d

Browse files
committed
ci: import signing key so signature checking passes
Signed-off-by: Devon Bautista <17506592+synackd@users.noreply.github.com>
1 parent 963a875 commit f43700d

1 file changed

Lines changed: 3 additions & 0 deletions

File tree

.github/workflows/build-rpm.yaml

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -138,7 +138,10 @@ jobs:
138138
139139
- name: Verify RPM signatures
140140
shell: bash
141+
env:
142+
GPG_SIGNING_FINGERPRINT: ${{ steps.ephemeral.outputs.ephemeral-fingerprint }}
141143
run: |
144+
rpm --import <(gpg --export --armor "${GPG_SIGNING_FINGERPRINT}")
142145
found=0
143146
while IFS= read -r -d '' rpm_file; do
144147
found=1

0 commit comments

Comments
 (0)