From 63a9e2277859bfc5aa74aab08db188f7d14008c1 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ma=C3=ABl=20Nison?= <nison.mael@gmail.com>
Date: Fri, 24 May 2024 23:13:24 +0200
Subject: [PATCH] Attempt to fix build signing

---
 .github/workflows/signing.yml | 33 +++++++++++++++++++++++++++++++++
 1 file changed, 33 insertions(+)
 create mode 100644 .github/workflows/signing.yml

diff --git a/.github/workflows/signing.yml b/.github/workflows/signing.yml
new file mode 100644
index 0000000000..354ce246ca
--- /dev/null
+++ b/.github/workflows/signing.yml
@@ -0,0 +1,33 @@
+name: Release Signing
+
+on:
+  workflow_dispatch:
+    inputs:
+      version:
+        required: true
+
+jobs:
+  release-gpg-test:
+    runs-on: ubuntu-latest
+    environment: Deploy
+    steps:
+      - name: Import GPG
+        id: import_gpg
+        uses: crazy-max/ghaction-import-gpg@01dd5d3ca463c7f10f7f4f7b4f177225ac661ee4
+        with:
+          gpg_private_key: ${{ secrets.GPG_RELEASE_KEY }}
+          passphrase: ${{ secrets.GPG_PASSPHRASE }}
+
+      - name: Downloading the release
+        run: wget https://github.com/yarnpkg/yarn/releases/download/v${{ inputs.version }}/yarn-v${{ inputs.version }}.tar.gz
+
+      - name: GPG sign file
+        run: gpg -u ${{ vars.GPG_RELEASE_KEY_ID }} --armor --output yarn-v${{ inputs.version }}.tar.gz.asc --detach-sign yarn-v${{ inputs.version }}.tar.gz
+
+      - name: Store signature as artifact
+        uses: actions/upload-artifact@v3
+        with:
+          name: signed
+          path: |
+            yarn-v${{ inputs.version }}.tar.gz
+            yarn-v${{ inputs.version }}.tar.gz.asc