Add guardrails to GPG keys

Signed-off-by: fjtirado <[email protected]>

Author: ricardozanini

.github/workflows/release.yml

@@ -18,6 +18,7 @@ jobs:
       MAVEN_USERNAME: ${{ secrets.OSSRH_USERNAME }}
       MAVEN_PASSWORD: ${{ secrets.OSSRH_PASSWORD }}
       MAVEN_GPG_PASSPHRASE: ${{ secrets.GPG_PASSPHRASE }}
+      MAVEN_GPG_FINGERPRINT: ${{ secrets.GPG_FINGERPRINT }}
 
     steps:
       - uses: radcortez/project-metadata-action@main
@@ -43,6 +44,14 @@ jobs:
           gpg-private-key: ${{ secrets.GPG_PRIVATE_KEY }}
           gpg-passphrase: MAVEN_GPG_PASSPHRASE
 
+      - name: GPG sanity check
+        run: |
+          gpg --list-secret-keys --keyid-format LONG
+          echo "test" | gpg --batch --yes --pinentry-mode loopback \
+          --passphrase "$MAVEN_GPG_PASSPHRASE" \
+          --local-user "$MAVEN_GPG_FINGERPRINT" \
+          --clearsign > /dev/null
+
       - name: Configure Git author
         run: |
           git config --local user.email "[email protected]"