Skip to content

actionhippie/gpgsign

Use this GitHub action with your project
Add this Action to an existing workflow or create a new one
View on Marketplace
BranchesTags

Repository files navigation

gpgsign

Current Tag Docker Build

GitHub Action to sign artifacts or any file with GnuPG.

Usage

name: Example

on:
  - push
  - pull_request

jobs:
  test:
    runs-on: ubuntu-latest

    steps:
      - uses: actions/checkout@v2

      - uses: actionhippie/gpgsign@v1
        with:
          private_key: ${{ secrets.GNUPG_KEY }}
          passphrase: ${{ secrets.GNUPG_PASSPHRASE }}
          detach_sign: true
          files: |
            dist/*
          excludes: |
            dist/*.sha256

Inputs

private_key

Private GPG key used for signing

passphrase

Passphrase for the GPG key

armor

Create ASCII armored output, defaults to true

detach_sign

Make a detached signature

clear_sign

Make a clear text signature

files

List of files to create a signature

excludes

List of files to exclude from signing

Outputs

None

Security

If you find a security issue please contact thomas@webhippie.de first.

Contributing

Fork -> Patch -> Push -> Pull Request

Authors

License

Apache-2.0

Copyright

Copyright (c) 2022 Thomas Boerger <thomas@webhippie.de>

About

Action to sign artifacts or any file with GnuPG

Topics

github action

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 13

v1.7.3 Latest
Feb 2, 2026
+ 12 releases

Packages

 
 
 

Contributors 4

  •  
  •  
  •  
  •  

Languages