👋 Hello, people! I am trying to use the Gradle signing plugin correctly. Currently, I use the GitHub action https://github.com/marketplace/actions/import-gpg in my workflow as follows:

- name: Import GPG key
  uses: crazy-max/ghaction-import-gpg@v6
  with:
    gpg_private_key: ${{ secrets.GPG_PRIVATE_KEY }}
    passphrase: ${{ secrets.GPG_PASSPHRASE }}
    fingerprint: ${{ env.GPG_FINGERPRINT }}

This imports the GPG key and should set the specific subkey for signing The GPG master key has multiple subkeys, but for some reason, the Gradle signing task uses a different subkey for signing. It is currently used like this:

signing {
    useGpgCmd()

    sign(...)
}

I'd like to know why it is using the wrong subkey, especially when the GitHub action is importing another subkey, which gpg2 should then use for signing.