Verify signed tag

Signed-off-by: Stefan Prodan <[email protected]>

Author: stefanprodan

.github/workflows/release.yaml

@@ -36,9 +36,7 @@ jobs:
       - name: Verify signed release
         if: startsWith(github.ref, 'refs/tags/v')
         run: |
-          if git -P show ${GITHUB_REF_NAME} | grep -q 'END PGP SIGNATURE'; then
-            echo "PGP signature found for ${GITHUB_REF_NAME} tag."
-          else
+          if git tag -v ${GITHUB_REF_NAME} | grep 'no signature found'; then
             echo "No PGP signature found for tag  ${GITHUB_REF_NAME}. Aborting release process..."
             exit 1
           fi