From 41aba41aa819c871748658a6983efa1932d4b8ed Mon Sep 17 00:00:00 2001
From: akozlovets098 <anastasiia.kozlovets@ext.runpanther.io>
Date: Wed, 5 Feb 2025 15:36:44 +0200
Subject: [PATCH] THREAT-449 Fix PAT version bump action

---
 .github/workflows/version_bump_pr.yml | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/version_bump_pr.yml b/.github/workflows/version_bump_pr.yml
index 2dad0f79..edcef97a 100644
--- a/.github/workflows/version_bump_pr.yml
+++ b/.github/workflows/version_bump_pr.yml
@@ -46,13 +46,21 @@ jobs:
         echo $NEW_VERSION > VERSION
         sed -i "s/VERSION_STRING: Final = \"[0-9]*\.[0-9]*\.[0-9]*\"/VERSION_STRING: Final = \"$NEW_VERSION\"/" panther_analysis_tool/constants.py
 
+    - name: Import GPG key
+      uses: crazy-max/ghaction-import-gpg@v6
+      with:
+        gpg_private_key: ${{ secrets.PANTHER_BOT_GPG_PRIVATE_KEY }}
+        passphrase: ${{ secrets.PANTHER_BOT_GPG_PRIVATE_KEY_PASSPHRASE }}
+        git_user_signingkey: true
+        git_commit_gpgsign: true
+
     - name: Create Branch and Pull Request
       run: |
         NEW_VERSION="${{ steps.bump_version.outputs.new_version }}"
         git config user.name "dac-bot[bot]"
         git config user.email "dac-bot@panther.com"
         git checkout -b "$NEW_VERSION"
-        git commit -a -m "Bump version to $NEW_VERSION"
+        git commit -a -S -m "Bump version to $NEW_VERSION"
         git push --set-upstream origin "$NEW_VERSION"
         gh pr create -t "Version bump to v$NEW_VERSION" -b "Bumping Version to v$NEW_VERSION ahead of release."
       env: