simplify gpg setup

Author: majk-p

.github/scripts/gpg-setup.sh

@@ -1,20 +1,5 @@
 #!/usr/bin/env bash
 set -e
 
-# Create .gnupg directory with proper permissions
-mkdir -p ~/.gnupg
-chmod 700 ~/.gnupg
-
-# Configure GPG for non-interactive use
-echo "use-agent" >> ~/.gnupg/gpg.conf
-echo "pinentry-mode loopback" >> ~/.gnupg/gpg.conf
-echo "allow-loopback-pinentry" >> ~/.gnupg/gpg-agent.conf
-
-# Set proper permissions on GPG config files
-chmod 600 ~/.gnupg/gpg.conf ~/.gnupg/gpg-agent.conf
-
-# Reload the GPG agent
-echo RELOADAGENT | gpg-connect-agent
-
 # Import the PGP secret key
 echo "$PGP_SECRET" | base64 --decode | gpg --import --no-tty --batch --yes

.github/workflows/ci.yml

@@ -15,11 +15,10 @@ on:
     tags: [v*]
 
 env:
-  PGP_PASSPHRASE: ${{ secrets.PGP_PASSPHRASE }}
+  GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+  PGP_SECRET: ${{ secrets.PGP_SECRET }}
   SONATYPE_PASSWORD: ${{ secrets.SONATYPE_PASSWORD }}
   SONATYPE_USERNAME: ${{ secrets.SONATYPE_USERNAME }}
-  PGP_SECRET: ${{ secrets.PGP_SECRET }}
-  GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
 jobs:
   build:

build.sbt

@@ -43,7 +43,8 @@ ThisBuild / githubWorkflowPublish := Seq(
   WorkflowStep.Run(List(".github/scripts/gpg-setup.sh"), name = Some("Import GPG key")),
   WorkflowStep.Sbt(List("ci-release"))
 )
-ThisBuild / githubWorkflowEnv ++= List("PGP_PASSPHRASE", "PGP_SECRET", "SONATYPE_PASSWORD", "SONATYPE_USERNAME").map { envKey =>
+
+ThisBuild / githubWorkflowEnv ++= List("PGP_SECRET", "SONATYPE_PASSWORD", "SONATYPE_USERNAME").map { envKey =>
   envKey -> s"$${{ secrets.$envKey }}"
 }.toMap