This repository was archived by the owner on Jul 2, 2026. It is now read-only.
Commit 406d727
authored
Fix release GitHub action (#126)
sbt-ci-release's setupGpg runs
echo $PGP_SECRET | base64 --decode | gpg --import
so it expects PGP_SECRET to be a base64-encoded blob. The existing
GitHub PGP_SECRET secret instead holds the raw armored PGP key — the
format Gradle's useInMemoryPgpKeys consumed before the SBT migration.
The first release attempt after the migration therefore failed with
java.lang.RuntimeException: base64: invalid input
at com.geirsson.CiReleasePlugin$.setupGpg(CiReleasePlugin.scala:95)
Re-encode the armored key to base64 inline in the workflow so the
GitHub secret can stay in its current form (kept compatible with any
other consumers) and the encoded value never lands in logs, files or
GITHUB_ENV — it lives only in the publish step's shell process.1 parent 30fa67e commit 406d727
1 file changed
Lines changed: 7 additions & 2 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
17 | 17 | | |
18 | 18 | | |
19 | 19 | | |
20 | | - | |
21 | 20 | | |
22 | 21 | | |
23 | 22 | | |
24 | | - | |
| 23 | + | |
| 24 | + | |
| 25 | + | |
| 26 | + | |
25 | 27 | | |
| 28 | + | |
| 29 | + | |
| 30 | + | |
0 commit comments