Skip to content

Commit 3be3ea9

Browse files
adamluiadamlui
committed
Moved secrets to env vars to avoid expansion in run blocks
1 parent 93746ec commit 3be3ea9

File tree

3 files changed

+15
-7
lines changed

3 files changed

+15
-7
lines changed

.github/workflows/sync-changes-to-ai-web-extensions.yml

Lines changed: 6 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -42,14 +42,17 @@ jobs:
4242
echo "ESCAPED_MSG<<EOF" >> $GITHUB_ENV
4343
echo "$COMMIT_MSG" | sed 's/`/\`/g' >> $GITHUB_ENV
4444
echo "EOF" >> $GITHUB_ENV
45-
45+
4646
- name: Config committer
47+
env:
48+
GPG_PRIVATE_KEY: ${{ secrets.GPG_PRIVATE_KEY }}
49+
GPG_PRIVATE_ID: ${{ secrets.GPG_PRIVATE_ID }}
4750
run: |
48-
gpg --batch --import <(echo "${{ secrets.GPG_PRIVATE_KEY }}")
51+
gpg --batch --import <(echo "$GPG_PRIVATE_KEY")
4952
git config --global commit.gpgsign true
5053
git config --global user.name "kudo-sync-bot"
5154
git config --global user.email "[email protected]"
52-
git config --global user.signingkey "${{ secrets.GPG_PRIVATE_ID }}"
55+
git config --global user.signingkey "$GPG_PRIVATE_ID"
5356
5457
- name: Push changes to adamlui/ai-web-extensions
5558
run: |

.github/workflows/sync-changes-to-gitlab.yml

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -22,6 +22,8 @@ jobs:
2222
fetch-depth: 0
2323

2424
- name: Push changes to gitlab.com/adamlui/perplexity-omnibox
25+
env:
26+
GITLAB_SYNC_PAT: ${{ secrets.GITLAB_SYNC_PAT }}
2527
run: |
2628
git push --force -o ci.skip \
27-
https://oauth2:${{ secrets.GITLAB_SYNC_PAT }}@gitlab.com/adamlui/perplexity-omnibox.git main
29+
https://oauth2:[email protected]/adamlui/perplexity-omnibox.git main

.github/workflows/update-usercount-shields-weekly.yml

Lines changed: 6 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -129,15 +129,18 @@ jobs:
129129
rsync -avhr --delete --exclude={'.*','eslint*','package*json'} \
130130
${{ github.workspace }}/adamlui/perplexity-omnibox/ \
131131
${{ github.workspace }}/adamlui/ai-web-extensions/perplexity-omnibox/
132-
132+
133133
- name: Config committer
134134
if: env.USERS_UPDATED == 'true'
135+
env:
136+
GPG_PRIVATE_KEY: ${{ secrets.GPG_PRIVATE_KEY }}
137+
GPG_PRIVATE_ID: ${{ secrets.GPG_PRIVATE_ID }}
135138
run: |
136-
gpg --batch --import <(echo "${{ secrets.GPG_PRIVATE_KEY }}")
139+
gpg --batch --import <(echo "$GPG_PRIVATE_KEY")
137140
git config --global commit.gpgsign true
138141
git config --global user.name "kudo-sync-bot"
139142
git config --global user.email "[email protected]"
140-
git config --global user.signingkey "${{ secrets.GPG_PRIVATE_ID }}"
143+
git config --global user.signingkey "$GPG_PRIVATE_ID"
141144
142145
- name: Push changes to adamlui/perplexity-omnibox
143146
if: env.USERS_UPDATED == 'true'

0 commit comments

Comments
 (0)