From 80a7b90b0275e5929efa7c24d6d78f2686b48fe8 Mon Sep 17 00:00:00 2001
From: Brenno Oliveira <brenno.oliveira@deliveryhero.com>
Date: Tue, 7 Jan 2025 15:11:46 +0100
Subject: [PATCH] fix: Add legacy GPG keyring (#654)

Signed-off-by: Brenno Oliveira <brenno.oliveira@deliveryhero.com>
---
 .github/workflows/helm-publish.yaml | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/helm-publish.yaml b/.github/workflows/helm-publish.yaml
index 47e74298..db09d005 100644
--- a/.github/workflows/helm-publish.yaml
+++ b/.github/workflows/helm-publish.yaml
@@ -29,11 +29,13 @@ jobs:
         with:
           gpg_private_key: ${{ secrets.GPG_PRIVATE_KEY }}
           passphrase: ${{ secrets.GPG_PASSPHRASE }}
-      - name: Save GPG passphrase
+      - name: Save GPG passphrase and legacy keyring
         run: |
           cat << EOF > passphrase.txt
           ${{ secrets.GPG_PASSPHRASE }}
           EOF
+          gpg -o ~/.gnupg/pubring.gpg --export ${{ steps.import_gpg.outputs.keyid }}
+          gpg  --batch --pinentry-mode loopback --passphrase $(cat passphrase.txt) -o ~/.gnupg/secring.gpg --export-secret-keys ${{ steps.import_gpg.outputs.keyid }}
       - name: Package Helm Charts
         shell: bash
         run: |
@@ -44,7 +46,7 @@ jobs:
                   continue
               fi
               echo "$d"
-              helm package --sign "$d" -u --key ${{ steps.import_gpg.outputs.name }} --passphrase-file passphrase.txt
+              helm package --sign "$d" -u --key ${{ steps.import_gpg.outputs.name }} --passphrase-file passphrase.txt --keyring ~/.gnupg/secring.gpg
           done
           rm passphrase.txt
           echo "Packing done"