Automatically install the secret GPG key by default and ensure it's extracted properly.

templates/packagebuild.xml

@@ -44,9 +44,10 @@ mkdir {{ NAME }};
 mv -v debian {{ NAME }};
 git clone {{ UPSTREAM_URL }} upstream;
 export VERSION="$(head -1 {{ NAME }}/debian/changelog | sed -n '/(/,/)/{:a; $!N; /)/!{$!ba}; s/.*(\([^)]*\)).*/\1/p}' | cut -d '-' -f1)+git$(date +'%Y%m%d%H%M')";
-sed -i "1i{{ NAME }} ($VERSION-0ubuntu1~ppa1) {{ RELEASE }}; urgency=low\n\n  * CI upload.\n\n –– Lugito <info@lubuntu.me>  $(date +'%a, %d %b %Y %T %z')\n" {{ NAME }}/debian/changelog
+sed -i "1i{{ NAME }} ($VERSION-0ubuntu1~ppa1) {{ RELEASE }}; urgency=low\n\n  * CI upload.\n\n –– Lugito <info@lubuntu.me>  $(date +'%a, %d %b %Y %T %z')\n" {{ NAME }}/debian/changelog;
-cat {{ NAME }}/debian/changelog
+cat {{ NAME }}/debian/changelog;
-tar xvf $GPG_KEY
+tar xf $GPG_KEY;
+gpg --list-keys
       </command>
     </hudson.tasks.Shell>
   </builders>
@@ -66,5 +67,14 @@ tar xvf $GPG_KEY
       <disableDeferredWipeout>false</disableDeferredWipeout>
     </hudson.plugins.ws__cleanup.WsCleanup>
   </publishers>
-  <buildWrappers/>
+  <buildWrappers>
+    <org.jenkinsci.plugins.credentialsbinding.impl.SecretBuildWrapper plugin="credentials-binding@1.18">
+      <bindings>
+        <org.jenkinsci.plugins.credentialsbinding.impl.FileBinding>
+          <credentialsId>7d7933f8-ea4f-42b6-aaee-1b325bc75ca6</credentialsId>
+          <variable>GPG_KEY</variable>
+        </org.jenkinsci.plugins.credentialsbinding.impl.FileBinding>
+      </bindings>
+    </org.jenkinsci.plugins.credentialsbinding.impl.SecretBuildWrapper>
+  </buildWrappers>
 </project>