artifact signing fix attempt #2

Author: Strum355

.github/workflows/release.yml

@@ -11,18 +11,14 @@ jobs:
       - name: Get tag
         id: tag
         run: echo "::set-output name=version::${GITHUB_REF/refs\/tags\/v/}"
-      - id: install-secret-key
-        name: Install gpg secret key
-        run: |
-          echo "${{ secrets.PGP_SECRET }}" | base64 -d | gpg --batch --import
-          export GPG_TTY=$(tty || echo "")
-          gpg --list-secret-keys --keyid-format SHORT
       - uses: actions/setup-java@v2
         with: 
           java-version: '8'
           distribution: 'adopt'
       - name: Publish ${{ github.ref }}
-        run: ./gradlew -Pversion=${{ steps.tag.outputs.version }} -Psigning.password=${{ secrets.PGP_PASSPHRASE }} publish
+        run: ./gradlew -Pversion=${{ steps.tag.outputs.version }} publish
         env:
           SONATYPE_USERNAME: ${{ secrets.SONATYPE_USERNAME }}
           SONATYPE_PASSWORD: ${{ secrets.SONATYPE_PASSWORD }}
+          ORG_GRADLE_PROJECT_signingKey: ${{ secrets.PGP_SECRET }}
+          ORG_GRADLE_PROJECT_signingPassword: ${{ secrets.PGP_PASSPHRASE }}

gradle.properties

@@ -1,5 +1,3 @@
 kotlin.code.style=official
 org.gradle.parallel=true
-org.gradle.caching=true
-signing.gnupg.keyName=EF0E44A9
-signing.gnupg.executable=gpg
+org.gradle.caching=true

semanticdb-kotlinc/build.gradle.kts

@@ -112,7 +112,9 @@ publishing {
 }
 
 signing {
-    useGpgCmd()
+    val signingKey: String? by project
+    val signingPassword: String? by project
+    useInMemoryPgpKeys(signingKey, signingPassword)
     sign(publishing.publications["shadow"])
 }