From 59bc72670d00a648a80754d813871026400914d0 Mon Sep 17 00:00:00 2001
From: Sheogorath <sheogorath@shivering-isles.com>
Date: Thu, 21 Sep 2023 01:44:18 +0200
Subject: [PATCH] ci(charts): Try adding Signed Helm charts

---
 charts/.utils/gitlab-ci.yaml | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/charts/.utils/gitlab-ci.yaml b/charts/.utils/gitlab-ci.yaml
index 668abb7b2..0fe89f52e 100644
--- a/charts/.utils/gitlab-ci.yaml
+++ b/charts/.utils/gitlab-ci.yaml
@@ -16,7 +16,12 @@ chart-package:
   image: quay.io/helmpack/chart-testing:v3.9.0
   script:
     - export TMP_DIR=$(mktemp -d)
-    - helm package charts/${CHART} -d "$TMP_DIR"
+    - |
+      if [ -f "$HELM_SIGNING_KEY" ]; then
+        gpg --import "$HELM_SIGNING_KEY"
+        export HELM_SIGN="--sign --key \"$HELM_SIGNING_NAME\""
+      fi
+    - helm package charts/${CHART} ${HELM_SIGN} -d "$TMP_DIR"
     - for i in $(ls $TMP_DIR/*.tgz); do curl --request POST --user "gitlab-ci-token:$CI_JOB_TOKEN" --form "chart=@${i}" "${CI_API_V4_URL}/projects/${CI_PROJECT_ID}/packages/helm/api/${CI_COMMIT_REF_SLUG}/charts"; done
   rules:
     - if: '$CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_PIPELINE_SOURCE == "push"'
@@ -64,4 +69,4 @@ chart-helm-unittest:
     - if: '$CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_PIPELINE_SOURCE == "push"'
       changes:
         paths:
-          - charts/${CHART}/**/*
\ No newline at end of file
+          - charts/${CHART}/**/*
-- 
GitLab