Signing Helm packages

[didierofrivia]

Part of the work needed for Kuadrant/helm-charts#18

This PR introduces the GPG signing of Helm chart packages upon creation. It also uploads its provenance file to the GH release page.

The job now requires to be passed an environment variable GPG_KEYRING_BASE64 which represents the GPG keyring base64 encoded, in order to be stored as a GH action variable.

The following PRs need to be merged first:

• Signing Helm packages dns-operator#370
• Signing Helm packages limitador-operator#175
• Signing Helm packages authorino-operator#238

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 83.63%. Comparing base (d97e8dd) to head (9f79273).
Report is 7 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #1151      +/-   ##
==========================================
+ Coverage   83.45%   83.63%   +0.18%     
==========================================
  Files          81       81              
  Lines        6943     6943              
==========================================
+ Hits         5794     5807      +13     
+ Misses        925      913      -12     
+ Partials      224      223       -1     

Flag	Coverage Δ
bare-k8s-integration	22.88% <ø> (+0.01%)	⬆️
controllers-integration	74.95% <ø> (+0.01%)	⬆️
envoygateway-integration	40.61% <ø> (+0.01%)	⬆️
gatewayapi-integration	19.47% <ø> (-0.09%)	⬇️
istio-integration	43.27% <ø> (+0.11%)	⬆️
unit	19.57% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

Components	Coverage Δ
api/v1beta1 (u)	90.00% <ø> (ø)
api/v1beta2 (u)	∅ <ø> (∅)
pkg/common (u)	∅ <ø> (∅)
pkg/istio (u)	62.06% <ø> (ø)
pkg/log (u)	93.18% <ø> (ø)
pkg/reconcilers (u)	24.67% <ø> (ø)
pkg/rlptools (u)	∅ <ø> (∅)
controllers (i)	86.83% <ø> (+0.04%)	⬆️

see 7 files with indirect coverage changes