chore: delete gpg on release

.gitea/workflows/CD.yml

@@ -13,14 +13,6 @@ jobs:
   release:
     runs-on: ubuntu-latest
     steps:
-      - name: Install Gpg
-        run: apt-get update && apt-get install -y gnupg curl
-
-      - name: Import GPG key
-        if: secrets.GPG_PRIVATE_KEY != null
-        run: |
-          echo "${{ secrets.GPG_PRIVATE_KEY }}" | gpg --batch --import
-          echo "${{ secrets.GPG_FINGERPRINT }}" | gpg --import-ownertrust
       - name: Install syft
         run: curl -sSfL https://get.anchore.io/syft | sudo sh -s -- -b /usr/local/bin
       - name: Checkout

.goreleaser.yml

@@ -55,22 +55,6 @@ checksum:
   name_template: "{{ .ProjectName }}_{{ .Version }}_checksums.txt"
   algorithm: sha256
 
-signs:
-  - cmd: gpg
-    args:
-      - "--batch"
-      - "--no-tty"
-      - "--pinentry-mode"
-      - "loopback"
-      - "-u"
-      - "{{ .Env.GPG_FINGERPRINT }}"
-      - "--output"
-      - "${signature}"
-      - "--detach-sign"
-      - "${artifact}"
-    stdin: "{{ .Env.GPG_PASSPHRASE }}"
-    artifacts: checksum
-
 sboms:
   - artifacts: archive
     documents: