From 5ffe73ea47b69b99954d973e04f35e5722c8ebde Mon Sep 17 00:00:00 2001
From: Allain Magyar <allain.magyar@iohk.io>
Date: Fri, 25 Jul 2025 09:06:03 -0300
Subject: [PATCH 1/2] ci: adds bot gpg key

Signed-off-by: Allain Magyar <allain.magyar@iohk.io>
---
 .github/workflows/release.yml | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 5b03d872d..553fbba2e 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -136,6 +136,16 @@ jobs:
         env:
           NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
 
+      - uses: crazy-max/ghaction-import-gpg@v6
+        id: import_gpg
+        with:
+          gpg_private_key: ${{ secrets.HYP_BOT_GPG_PRIVATE }}
+          passphrase: ${{ secrets.HYP_BOT_GPG_PASSWORD }}
+          git_user_signingkey: true
+          git_commit_gpgsign: true
+          git_config_global: true
+          git_tag_gpgsign: false
+
       - name: Commit updated files and tag the release
         uses: stefanzweifel/git-auto-commit-action@v5
         if: ${{ inputs.release_swift }}

From 56fa5857ff881aa7efceef91ed5af9db8f6f748f Mon Sep 17 00:00:00 2001
From: Allain Magyar <allain.magyar@iohk.io>
Date: Fri, 25 Jul 2025 09:12:21 -0300
Subject: [PATCH 2/2] ci: add author, sign and signoff for release

Signed-off-by: Allain Magyar <allain.magyar@iohk.io>
---
 .github/workflows/release.yml | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 553fbba2e..27a295c69 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -137,7 +137,7 @@ jobs:
           NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
 
       - uses: crazy-max/ghaction-import-gpg@v6
-        id: import_gpg
+        id: import-gpg
         with:
           gpg_private_key: ${{ secrets.HYP_BOT_GPG_PRIVATE }}
           passphrase: ${{ secrets.HYP_BOT_GPG_PASSWORD }}
@@ -150,6 +150,10 @@ jobs:
         uses: stefanzweifel/git-auto-commit-action@v5
         if: ${{ inputs.release_swift }}
         with:
+          commit_author: "${{ steps.import-gpg.outputs.name }} <${{ steps.import-gpg.outputs.email }}>"
+          commit_user_name: ${{ steps.import-gpg.outputs.name }}
+          commit_user_email: ${{ steps.import-gpg.outputs.email }}
+          commit_options: '-s -S'
           commit_message: |
             chore(release): v${{ github.event.inputs.version }}
           tagging_message: v${{ github.event.inputs.version }}