ROU-11456: Small improvements in pipelines (#441)

This PR is for adding small improvements on the github actions.

### What was happening
- The way the github actions were accessing to the secrets and passing
as input parameter to other actions;
- The version of the external github action `actions/checkout`

### What was done
- Now, github actions that require secrets access to them directly
- `actions/checkout` was standardized to v4
- Tested changes in the sandbox

### Checklist
-   [x] tested locally
-   [ ] documented the code
-   [ ] clean all warnings and errors of eslint
- [ ] requires changes in OutSystems (if so, provide a module with
changes)
- [ ] requires new sample page in OutSystems (if so, provide a module
with changes)

Author: rugoncalves

.github/os-git-actions/setup-gpg/action.yml

@@ -1,22 +1,13 @@
 name: 'setup-gpg'
 description: 'Prepare to get following commits signed'
-inputs:
-    gpgPriv:
-        description: 'GPG Private key'
-        required: true
-        default: ''
-    gpgPassPhrase:
-        description: 'GPG passphrase'
-        required: false
-        default: '""'
 
 runs:
     using: composite
     steps:
         - name: Import and load GPG key
           uses: crazy-max/ghaction-import-gpg@v6
           with:
-              gpg_private_key: ${{ inputs.gpgPriv }}
-              passphrase: ${{ inputs.gpgPassPhrase }}
+              gpg_private_key: ${{ secrets.GPG_SIGN_KEY }}
+              passphrase: ${{ secrets.GPG_PASSPHRASE }}
               git_user_signingkey: true
               git_commit_gpgsign: true

.github/os-git-actions/signed-commit/action.yml

@@ -13,23 +13,12 @@ inputs:
         description: 'Defines if a `git add.` should be made or not.'
         required: false
         default: false
-    gpgPriv:
-        description: 'GPG Private key'
-        required: true
-        default: ''
-    gpgPassPhrase:
-        description: 'GPG passphrase'
-        required: false
-        default: '""'
 
 runs:
     using: composite
     steps:
         - name: Setup GPG to sign commits
           uses: ./.github/os-git-actions/setup-gpg/
-          with:
-              gpgPriv: ${{ inputs.gpgPriv }}
-              gpgPassPhrase: ${{ inputs.gpgPassPhrase }}
 
         - name: Perform git commit
           uses: ./.github/os-git-actions/manual-commit/

.github/workflows/DevPR.yml

@@ -12,7 +12,7 @@ jobs:
                 working-directory: ./
         steps:
             - name: Checkout branch dev
-              uses: actions/checkout@v2
+              uses: actions/checkout@v4
 
             - name: Install project dependencies
               run: npm install
@@ -25,7 +25,7 @@ jobs:
         runs-on: ubuntu-latest
         steps:
             - name: Checkout branch dev
-              uses: actions/checkout@v2
+              uses: actions/checkout@v4
 
             - name: Install project dependencies
               run: npm install

.github/workflows/PreRelease.yml

@@ -119,5 +119,3 @@ jobs:
                   branch: dev
                   message: 'Updated into v${{ inputs.new-dev-release }} [skip ci]'
                   newFiles: true
-                  gpgPriv: ${{ secrets.GPG_SIGN_KEY }}
-                  gpgPassPhrase: ${{ secrets.GPG_PASSPHRASE }}