Update GPG bump instructions (#3199)

a-b · joaopapereira · web-flow · commit 302129d51e3a · 2024-10-03T14:46:16.000-05:00
Co-authored-by: João Pereira &lt;joaod@vmware.com&gt;
diff --git a/.github/workflows/release-bump-gpg.yml b/.github/workflows/release-bump-gpg.yml
@@ -11,13 +11,13 @@
 #
 #  - `gh auth login` - hit enter; it will open browser
 #  - `echo "All future steps will be applied to: ${GITHUB_REPOSITORY:?}"`
-#  - `gh secret list -R ${GITHUB_REPOSITORY:?} -e PROD`
+#  - `gh secret list -R ${GITHUB_REPOSITORY:?}`
 #
 #  ## Backup previous working GPG key
 #
 #    DO THIS STEP ONLY WHEN YOU KNOW THAT SIGNING_KEY_GPG KEY IS WORKING
 #
-#  - `gh secret set BACKUP_SIGNING_KEY_GPG -R ${GITHUB_REPOSITORY:?} -e PROD -b"${SIGNING_KEY_GPG:?}"`
+#  - `gh secret set BACKUP_SIGNING_KEY_GPG -R ${GITHUB_REPOSITORY:?} -b"${SIGNING_KEY_GPG:?}"`
 #
 #  ## Update GPG key expiration date
 #
@@ -45,12 +45,12 @@
 #
 #  - `gpg --armor --export "${SIGNING_KEY_GPG_ID:?}"` - we need this public key to update CLAW
 #
-#  - `gpg --export-secret-key "${SIGNING_KEY_GPG_ID:?}" | base64 | gh secret set SIGNING_KEY_GPG -R ${GITHUB_REPOSITORY:?} -e PROD`
+#  - `gpg --export-secret-key "${SIGNING_KEY_GPG_ID:?}" | base64 | gh secret set SIGNING_KEY_GPG -R ${GITHUB_REPOSITORY:?}`
 #
 #  to keep GPG Passphrase UI without distortion use snippet below instead of the top one
 #  ```
 #  key_pvt="$(gpg --export-secret-key "${SIGNING_KEY_GPG_ID:?}" | base64)"
-#  gh secret set SIGNING_KEY_GPG2 -R ${GITHUB_REPOSITORY:?} -e PROD  -b"${key_pvt}"
+#  gh secret set SIGNING_KEY_GPG2 -R ${GITHUB_REPOSITORY:?}  -b"${key_pvt}"
 #  ```
 #
 # List of GHA secrets:

Original file line number	Diff line number	Diff line change
`@@ -11,13 +11,13 @@`
`11`	`11`	`#`
`12`	`12`	# - `gh auth login` - hit enter; it will open browser
`13`	`13`	# - `echo "All future steps will be applied to: ${GITHUB_REPOSITORY:?}"`
`14`		-# - `gh secret list -R ${GITHUB_REPOSITORY:?} -e PROD`
	`14`	+# - `gh secret list -R ${GITHUB_REPOSITORY:?}`
`15`	`15`	`#`
`16`	`16`	`# ## Backup previous working GPG key`
`17`	`17`	`#`
`18`	`18`	`# DO THIS STEP ONLY WHEN YOU KNOW THAT SIGNING_KEY_GPG KEY IS WORKING`
`19`	`19`	`#`
`20`		-# - `gh secret set BACKUP_SIGNING_KEY_GPG -R ${GITHUB_REPOSITORY:?} -e PROD -b"${SIGNING_KEY_GPG:?}"`
	`20`	+# - `gh secret set BACKUP_SIGNING_KEY_GPG -R ${GITHUB_REPOSITORY:?} -b"${SIGNING_KEY_GPG:?}"`
`21`	`21`	`#`
`22`	`22`	`# ## Update GPG key expiration date`
`23`	`23`	`#`
`@@ -45,12 +45,12 @@`
`45`	`45`	`#`
`46`	`46`	# - `gpg --armor --export "${SIGNING_KEY_GPG_ID:?}"` - we need this public key to update CLAW
`47`	`47`	`#`
`48`		-# - `gpg --export-secret-key "${SIGNING_KEY_GPG_ID:?}" \| base64 \| gh secret set SIGNING_KEY_GPG -R ${GITHUB_REPOSITORY:?} -e PROD`
	`48`	+# - `gpg --export-secret-key "${SIGNING_KEY_GPG_ID:?}" \| base64 \| gh secret set SIGNING_KEY_GPG -R ${GITHUB_REPOSITORY:?}`
`49`	`49`	`#`
`50`	`50`	`# to keep GPG Passphrase UI without distortion use snippet below instead of the top one`
`51`	`51`	# ```
`52`	`52`	`# key_pvt="$(gpg --export-secret-key "${SIGNING_KEY_GPG_ID:?}" \| base64)"`
`53`		`-# gh secret set SIGNING_KEY_GPG2 -R ${GITHUB_REPOSITORY:?} -e PROD -b"${key_pvt}"`
	`53`	`+# gh secret set SIGNING_KEY_GPG2 -R ${GITHUB_REPOSITORY:?} -b"${key_pvt}"`
`54`	`54`	# ```
`55`	`55`	`#`
`56`	`56`	`# List of GHA secrets:`