Write signing key file & update publish tasks

Adjust CI and Gradle signing to avoid multiline secret issues and switch to new publish tasks.

- .github/workflows/deploy.yml: remove GPG import, expose SIGNING_KEY/PASSWORD and MAVEN creds via env, write credentials to ~/.gradle/gradle.properties, write the multiline signing key to /tmp/signing-key.txt and reference it, and change Gradle invocations from :*:publish to :*:publishToCentralPortal for release and snapshot flows.
- moss*/build.gradle: change signing logic to treat the signingKey property as a file path, read its contents, and call useInMemoryPgpKeys only when key content is available before signing publications.

This prevents problems with multiline secrets in GitHub Actions and ensures Gradle receives an in-memory PGP key correctly while using the updated publishing tasks.

Author: ericlmao

.github/workflows/deploy.yml

@@ -23,19 +23,21 @@ jobs:
       - name: Setup Gradle
         uses: gradle/actions/setup-gradle@v3
 
-      - name: Import GPG key
-        run: |
-          echo "${{ secrets.GPG_PRIVATE_KEY }}" | gpg --batch --import
-
       - name: Configure Gradle properties
+        env:
+          SIGNING_KEY: ${{ secrets.GPG_PRIVATE_KEY }}
+          SIGNING_PASSWORD: ${{ secrets.GPG_PASSPHRASE }}
+          MAVEN_USERNAME: ${{ secrets.MAVEN_CENTRAL_USERNAME }}
+          MAVEN_PASSWORD: ${{ secrets.MAVEN_CENTRAL_PASSWORD }}
         run: |
           mkdir -p ~/.gradle
-          cat << EOF > ~/.gradle/gradle.properties
-          mavenCentralUsername=${{ secrets.MAVEN_CENTRAL_USERNAME }}
-          mavenCentralPassword=${{ secrets.MAVEN_CENTRAL_PASSWORD }}
-          signing.gnupg.keyName=${{ secrets.GPG_KEY_ID }}
-          signing.gnupg.passphrase=${{ secrets.GPG_PASSPHRASE }}
-          EOF
+          echo "mavenCentralUsername=$MAVEN_USERNAME" >> ~/.gradle/gradle.properties
+          echo "mavenCentralPassword=$MAVEN_PASSWORD" >> ~/.gradle/gradle.properties
+          echo "signingPassword=$SIGNING_PASSWORD" >> ~/.gradle/gradle.properties
+
+          # Write signing key to a file to avoid multiline issues
+          echo "$SIGNING_KEY" > /tmp/signing-key.txt
+          echo "signingKey=/tmp/signing-key.txt" >> ~/.gradle/gradle.properties
 
       - name: Modify version for release
         if: github.ref == 'refs/heads/release'
@@ -52,8 +54,8 @@ jobs:
 
       - name: Build and deploy release
         if: github.ref == 'refs/heads/release'
-        run: ./gradlew clean :moss:publish :moss-paper:publish :moss-velocity:publish :moss-bungeecord:publish -PisRelease=true
+        run: ./gradlew clean :moss:publishToCentralPortal :moss-paper:publishToCentralPortal :moss-velocity:publishToCentralPortal :moss-bungeecord:publishToCentralPortal -PisRelease=true
 
       - name: Build and deploy snapshot
         if: github.ref == 'refs/heads/snapshot'
-        run: ./gradlew clean :moss:publish :moss-paper:publish :moss-velocity:publish :moss-bungeecord:publish -PisRelease=false
+        run: ./gradlew clean :moss:publishToCentralPortal :moss-paper:publishToCentralPortal :moss-velocity:publishToCentralPortal :moss-bungeecord:publishToCentralPortal -PisRelease=false

moss-bungeecord/build.gradle

@@ -112,8 +112,11 @@ centralPortal {
 }
 
 signing {
-    def signingKey = findProperty("signingKey")
+    def keyFile = findProperty("signingKey")
     def signingPassword = findProperty("signingPassword")
-    useInMemoryPgpKeys(signingKey, signingPassword)
+    def keyContent = keyFile ? new File(keyFile).text : null
+    if (keyContent) {
+        useInMemoryPgpKeys(keyContent, signingPassword)
+    }
     sign publishing.publications
 }

moss-paper/build.gradle

@@ -109,8 +109,11 @@ centralPortal {
 }
 
 signing {
-    def signingKey = findProperty("signingKey")
+    def keyFile = findProperty("signingKey")
     def signingPassword = findProperty("signingPassword")
-    useInMemoryPgpKeys(signingKey, signingPassword)
+    def keyContent = keyFile ? new File(keyFile).text : null
+    if (keyContent) {
+        useInMemoryPgpKeys(keyContent, signingPassword)
+    }
     sign publishing.publications
 }

moss-velocity/build.gradle

@@ -109,8 +109,11 @@ centralPortal {
 }
 
 signing {
-    def signingKey = findProperty("signingKey")
+    def keyFile = findProperty("signingKey")
     def signingPassword = findProperty("signingPassword")
-    useInMemoryPgpKeys(signingKey, signingPassword)
+    def keyContent = keyFile ? new File(keyFile).text : null
+    if (keyContent) {
+        useInMemoryPgpKeys(keyContent, signingPassword)
+    }
     sign publishing.publications
 }

moss/build.gradle

@@ -81,8 +81,11 @@ publishing {
 }
 
 signing {
-    def signingKey = findProperty("signingKey")
+    def keyFile = findProperty("signingKey")
     def signingPassword = findProperty("signingPassword")
-    useInMemoryPgpKeys(signingKey, signingPassword)
+    def keyContent = keyFile ? new File(keyFile).text : null
+    if (keyContent) {
+        useInMemoryPgpKeys(keyContent, signingPassword)
+    }
     sign publishing.publications
 }