build(deps): bump crazy-max/ghaction-import-gpg from 3 to 5

[dependabot]

Bumps crazy-max/ghaction-import-gpg from 3 to 5.

Release notes

Sourced from crazy-max/ghaction-import-gpg's releases.

v5.0.0

• Node 16 as default runtime (#136)
  • This requires a minimum Actions Runner version of v2.285.0, which is by default available in GHES 3.4 or later.

v4.4.0

• Use eslint prettier plugin (#132)
• Bump openpgp from 5.2.0 to 5.2.1 (#131)
• Bump minimist from 1.2.5 to 1.2.6 (#134)
• Bump @​actions/exec from 1.1.0 to 1.1.1 (#133)

v4.3.0

• Update dev dependencies and workflow (#130)
• Fix error deleting keys with short key id (#129)
• Bump openpgp from 5.1.0 to 5.2.0 (#128)

v4.2.0

• Align default ttl with GitHub job run timeout (#126)
• Delete key using primary key ID not subkey ID (#125)
• Set passphrase only for the fingerprint being used (#123)
• Bump openpgp from 5.0.0 to 5.1.0 (#116 #120)
• Bump actions/github-script from 4 to 6 (#115 #121)

v4.1.0

• Handle signing-only subkeys (#112)
• Bump @​actions/core from 1.5.0 to 1.6.0 (#114)
• Bump actions/github-script from 4 to 5 (#113)
• Bump ansi-regex from 5.0.0 to 5.0.1 (#111)
• Bump tmpl from 1.0.4 to 1.0.5 (#110)

v4.0.0

• OpenPGP.js v5 (#78)
• POSIX-compliant inputs names (#109)
  • Rename gpg-private-key input gpg_private_key
  • Rename git-config-global input git_config_global
  • Rename git-user-signingkey input git_user_signingkey
  • Rename git-commit-gpgsign input git_commit_gpgsign
  • Rename git-tag-gpgsign input git_tag_gpgsign
  • Rename git-push-gpgsign input git_push_gpgsign
  • Rename git-committer-name input git_committer_name
  • Rename git-committer-email input git_committer_email
• Bump @​actions/core from 1.4.0 to 1.5.0 (#106)

v3.2.0

• Add git-config-global input (#103)
• Use built-in getExecOutput (#102)
• Handle if-asked for git-push-gpgsign input (#100)
• Use getBooleanInput (#101)
• Bump @​actions/core from 1.2.7 to 1.4.0 (#97)
• Bump @​actions/exec from 1.0.4 to 1.1.0 (#96)
• Bump ws from 7.3.1 to 7.5.0 (#98)

... (truncated)

Changelog

Sourced from crazy-max/ghaction-import-gpg's changelog.

Commits

• 34ea557 Node 16 as default runtime (#136)
• 50e5abb cleanup workflow
• 6796c00 Bump Docker actions to latest major
• e00cb83 Update CHANGELOGUpdate CHANGELOG
• fe73870 Bump openpgp from 5.2.0 to 5.2.1 (#131)
• 22e3c1f Bump minimist from 1.2.5 to 1.2.6 (#134)
• 1e2a07d Bump codecov/codecov-action from 2 to 3 (#135)
• b58659b Bump @​actions/exec from 1.1.0 to 1.1.1 (#133)
• 3292b1b dev: use eslint prettier plugin (#132)
• 4d58d49 Update CHANGELOG
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)