update steps

Author: jaehyeon-kim

.github/workflows/release.yml

@@ -20,37 +20,31 @@ jobs:
           git config user.name "$GITHUB_ACTOR"
           git config user.email "[email protected]"
 
-      - name: Import GPG key
-        id: import_gpg
-        uses: crazy-max/ghaction-import-gpg@v6
-        with:
-          gpg_private_key: ${{ secrets.GPG_PRIVATE_KEY }}
-          passphrase: ${{ secrets.GPG_PASSPHRASE }}
+      - name: Import GPG private key
+        run: |
+          echo "$GPG_PRIVATE_KEY" | gpg --batch --import
+          # Trust the imported key ultimately to avoid trust prompts
+          KEY_ID=$(gpg --list-secret-keys --with-colons | grep '^sec' | head -n1 | cut -d':' -f5)
+          echo "KEY_ID=$KEY_ID" >> $GITHUB_ENV
 
-      - name: Export GPG keyring for chart-releaser (GPG 2.x compatible)
+      - name: Create combined GPG keyring for chart-releaser
         run: |
           mkdir -p gpg-keyring
-
           gpg --batch --yes --pinentry-mode loopback \
               --passphrase "$GPG_PASSPHRASE" \
-              --export-secret-keys "${{ steps.import_gpg.outputs.keyid }}" \
-              > gpg-keyring/secring.gpg
-
+              --export-secret-keys "$KEY_ID" > gpg-keyring/combined.gpg
           gpg --batch --yes \
-              --export "${{ steps.import_gpg.outputs.keyid }}" \
-              > gpg-keyring/pubring.gpg
+              --export "$KEY_ID" >> gpg-keyring/combined.gpg
         env:
           GPG_PASSPHRASE: ${{ secrets.GPG_PASSPHRASE }}
 
       - name: Prepare for Chart Releaser
         run: |
           echo "$GPG_PASSPHRASE" > passphrase.txt
-
           cat <<EOF > .cr.yaml
           sign: true
-          key: "${{ steps.import_gpg.outputs.keyid }}"
-          keyring: "gpg-keyring/pubring.gpg"
-          secret-keyring: "gpg-keyring/secring.gpg"
+          key: "$KEY_ID"
+          keyring: "gpg-keyring/combined.gpg"
           passphrase-file: "passphrase.txt"
           EOF
         env: