chore: test

Author: xiangyisss

.github/workflows/chart-release.yml

@@ -30,8 +30,22 @@ jobs:
           mkdir -p ~/.gnupg
           chmod 700 ~/.gnupg
           echo "pinentry-mode loopback" > ~/.gnupg/gpg.conf
-          echo "${{ secrets.HELM_RSA_PRIVATE_KEY }}" | base64 -d | gpg --batch --import
-          echo "${{ secrets.HELM_RSA_PASSPHRASE }}" | gpg --batch --passphrase-fd 0 --export-secret-keys > ~/.gnupg/secring.gpg
+          
+          # Clean and decode the private key (remove whitespace/newlines)
+          echo "Importing GPG private key..."
+          echo "${{ secrets.HELM_RSA_PRIVATE_KEY }}" | tr -d ' \n\r' | base64 -d 2>/dev/null | gpg --batch --import
+          
+          # Verify key was imported
+          if ! gpg --list-secret-keys "$GPG_KEY_ID" >/dev/null 2>&1; then
+            echo "❌ Failed to import GPG key"
+            echo "Please verify that HELM_RSA_PRIVATE_KEY contains valid base64-encoded private key"
+            exit 1
+          fi
+          
+          # Export secret keys for Helm
+          echo "$GPG_PASSPHRASE" | gpg --batch --passphrase-fd 0 --export-secret-keys > ~/.gnupg/secring.gpg
+          
+          echo "✅ GPG key imported successfully"
 
       - name: Package and Sign Charts
         run: |
@@ -53,7 +67,7 @@ jobs:
           echo "pinentry-mode loopback" > ~/.gnupg/gpg.conf
           
           # Import the RSA public key for verification
-          echo "${{ secrets.HELM_RSA_PRIVATE_KEY }}" | base64 -d | gpg --batch --import
+          echo "${{ secrets.HELM_RSA_PRIVATE_KEY }}" | tr -d ' \n\r' | base64 -d 2>/dev/null | gpg --batch --import
           
           # Create the public keyring that helm verify expects
           gpg --batch --export > ~/.gnupg/pubring.gpg