Note about new sign keys'

s
Erotemic · Sep 24, 2021 · 0dd986a · 0dd986a
1 parent 2aa2488
commit 0dd986a
Show file tree

Hide file tree

Showing 4 changed files with 5 additions and 8 deletions.
diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml
@@ -302,7 +302,7 @@ jobs:
         uses: actions/checkout@v2
 
       - name: Download wheels and sdist
-        uses: actions/download-artifact@v2
+        usesGPG_KEYID: actions/download-artifact@v2
         with:
           name: wheels
           path: dist
@@ -313,11 +313,6 @@ jobs:
       - name: Sign and Publish
         env:
           TEST_TWINE_REPOSITORY_URL: https://test.pypi.org/legacy/
-          #TEST_TWINE_USERNAME: ${{ secrets.TEST_TWINE_USERNAME }}
-          #TEST_TWINE_PASSWORD: ${{ secrets.TEST_TWINE_PASSWORD }}
-          #export TEST_TWINE_USERNAME=${{ secrets.EROTEMIC_TEST_TWINE_USERNAME }}
-          #export TEST_TWINE_PASSWORD=${{ secrets.EROTEMIC_TEST_TWINE_PASSWORD }}
-          #PYUTILS_CI_SECRET: ${{ secrets.PYUTILS_CI_SECRET }}
           TEST_TWINE_USERNAME: ${{ secrets.TEST_TWINE_USERNAME }}
           TEST_TWINE_PASSWORD: ${{ secrets.TEST_TWINE_PASSWORD }}
           EROTEMIC_CI_SECRET: ${{ secrets.EROTEMIC_CI_SECRET }}

diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -10,6 +10,8 @@ This project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.htm
 
 * Added GitHub actions to the CI
 * Disabled workaround 16806 in Python 3.8+
+* New CI GPG Keys: Erotemic-CI: 70858F4D01314BF21427676F3D568E6559A34380 for
+  reference the old signing key was 98007794ED130347559354B1109AC852D297D757.
 
 
 ### Fixed

diff --git a/dev/public_gpg_key b/dev/public_gpg_key
@@ -1 +1 @@
-
+70858F4D01314BF21427676F3D568E6559A34380
diff --git a/dev/setup_secrets.sh b/dev/setup_secrets.sh
@@ -161,7 +161,7 @@ export_encrypted_code_signing_keys(){
     GLKWS=$CI_SECRET openssl enc -aes-256-cbc -pbkdf2 -md SHA512 -pass env:GLKWS -e -a -in dev/ci_public_gpg_key.pgp > dev/ci_public_gpg_key.pgp.enc
     GLKWS=$CI_SECRET openssl enc -aes-256-cbc -pbkdf2 -md SHA512 -pass env:GLKWS -e -a -in dev/ci_secret_gpg_subkeys.pgp > dev/ci_secret_gpg_subkeys.pgp.enc
     GLKWS=$CI_SECRET openssl enc -aes-256-cbc -pbkdf2 -md SHA512 -pass env:GLKWS -e -a -in dev/gpg_owner_trust > dev/gpg_owner_trust.enc
-    echo $GPG_KEYID > dev/public_gpg_key
+    echo $MAIN_GPG_KEYID > dev/public_gpg_key
 
     # Test decrpyt
     GLKWS=$CI_SECRET openssl enc -aes-256-cbc -pbkdf2 -md SHA512 -pass env:GLKWS -d -a -in dev/ci_public_gpg_key.pgp.enc | gpg --list-packets --verbose