chore(deps): bump crazy-max/ghaction-import-gpg from 3.1.0 to 4

[dependabot]

Bumps crazy-max/ghaction-import-gpg from 3.1.0 to 4.

Release notes

Sourced from crazy-max/ghaction-import-gpg's releases.

v4.0.0

• OpenPGP.js v5 (#78)
• POSIX-compliant inputs names (#109)
  • Rename gpg-private-key input gpg_private_key
  • Rename git-config-global input git_config_global
  • Rename git-user-signingkey input git_user_signingkey
  • Rename git-commit-gpgsign input git_commit_gpgsign
  • Rename git-tag-gpgsign input git_tag_gpgsign
  • Rename git-push-gpgsign input git_push_gpgsign
  • Rename git-committer-name input git_committer_name
  • Rename git-committer-email input git_committer_email
• Bump @​actions/core from 1.4.0 to 1.5.0 (#106)

v3.2.0

• Add git-config-global input (#103)
• Use built-in getExecOutput (#102)
• Handle if-asked for git-push-gpgsign input (#100)
• Use getBooleanInput (#101)
• Bump @​actions/core from 1.2.7 to 1.4.0 (#97)
• Bump @​actions/exec from 1.0.4 to 1.1.0 (#96)
• Bump ws from 7.3.1 to 7.5.0 (#98)
• Fix setOutput (#86)
• Bump actions/github-script from v3 to v4.0.2 (#83)
• Bump @​actions/core from 1.2.6 to 1.2.7 (#81)
• Bump hosted-git-info from 2.8.8 to 2.8.9 (#85)
• Bump lodash from 4.17.20 to 4.17.21 (#84)
• Bump y18n from 4.0.0 to 4.0.1 (#79)
• Enhance workflow (#77)

Changelog

Sourced from crazy-max/ghaction-import-gpg's changelog.

3.1.0 (2021/01/29)

• Container based developer flow (#76)
• Bump openpgp from 4.10.9 to 4.10.10 (#75)
• Bump node-notifier from 8.0.0 to 8.0.1 (#72)
• Bump openpgp from 4.10.8 to 4.10.9 (#69)

3.0.2 (2020/11/24)

• Fix git committer email action input (#67)

3.0.1 (2020/10/01)

• Fix CVE-2020-15228

3.0.0 (2020/09/06)

• Move GPG_PRIVATE_KEY env var to gpg-private-key input
• Move PASSPHRASE env var to passphrase input
• Rename git_user_signingkey input to git-user-signingkey
• Rename git_commit_gpgsign input to git-commit-gpgsign
• Rename git_tag_gpgsign input to git-tag-gpgsign
• Rename git_push_gpgsign input to git-push-gpgsign
• Rename git_committer_name input to git-committer-name
• Rename git_committer_email input to git-committer-email
• Update deps

2.3.0 (2020/09/03)

• Preset passphrase for all key keygrips (#57)
• Update deps

2.2.0 (2020/08/28)

• Add workdir input (#55)
• Update deps

2.1.1 (2020/05/18)

• Fix importing of base64 armored string (#18)
• Enhanced tests
• Update deps

2.1.0 (2020/05/13)

• Allow importing GPG key as a base64 string (#14)

2.0.1 (2020/05/13)

• Committer email does not match

... (truncated)

Commits

• 8c43807 Update CHANGELOG
• a8573c0 Bump @​actions/core from 1.4.0 to 1.5.0 (#106)
• 3a2a627 POSIX-compliant inputs names (#109)
• e8a90f2 OpenPGP.js v5 (#78)
• 1c6a9e9 Update CHANGELOG
• ae17b9f Add git-config-global input (#103)
• dd220e9 Use built-in getExecOutput (#102)
• 93f53be Handle if-asked for git-push-gpgsign input (#100)
• 0dd57a5 Use getBooleanInput (#101)
• 26351bc Bump @​actions/core from 1.2.7 to 1.4.0 (#97)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #347.