From ad8194b7dc10e5a9415911b55bc7af0de86dc454 Mon Sep 17 00:00:00 2001
From: Leo Galambos <lg@hq.egothor.org>
Date: Thu, 16 Apr 2026 03:23:34 +0200
Subject: [PATCH] fix: pass signing secrets to tagged release build in GitHub
 Actions

---
 .github/workflows/build.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index 62d5c4b..bfde6c3 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -157,6 +157,9 @@ jobs:
           test -f gradle/verification-metadata.xml
 
       - name: Build release distribution, signed Maven bundle, and SBOM
+        env:
+          SIGNING_KEY: ${{ secrets.SIGNING_KEY }}
+          SIGNING_PASSWORD: ${{ secrets.SIGNING_PASSWORD }}
         run: ./gradlew --no-daemon clean build pmdMain javadoc jacocoTestReport distZip cyclonedxBom centralBundle
 
       - name: Publish bundle to Maven Central