feat: implement code signing for release packages #1

	name: Release

	on:
	push:
	tags:
	- v*

	permissions:
	id-token: write
	contents: read

	jobs:
	deployment:
	runs-on: windows-latest
	environment: Production
	steps:
	- name: Get the sources
	uses: actions/checkout@v4
	with:
	fetch-depth: 0

	- name: Azure login
	uses: azure/login@v2
	with:
	client-id: ${{ secrets.AZURE_CLIENT_ID }}
	tenant-id: ${{ secrets.AZURE_TENANT_ID }}
	subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}

	- name: Install .NET SDK 8.0.x
	uses: actions/setup-dotnet@v4
	with:
	dotnet-version: \|
	8.0.x

	- name: Install .NET SDK 9.0.x
	uses: actions/setup-dotnet@v4
	with:
	dotnet-version: \|
	9.0.x

	- name: Install .NET Core SDK (global.json)
	uses: actions/setup-dotnet@v4
	with:
	global-json-file: global.json

	- name: Build Cake Generator & SDK
	uses: cake-build/cake-action@master
	env:
	AZURE_DEVOPS_NUGET_API_KEY: ${{ secrets.AZURE_DEVOPS_NUGET_API_KEY }}
	AZURE_DEVOPS_NUGET_API_URL: ${{ secrets.AZURE_DEVOPS_NUGET_API_URL }}
	SIGN_TENANT_ID: ${{ secrets.AZURE_TENANT_ID }}
	SIGN_CLIENT_SUBSCRIPTION: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
	SIGN_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}
	SIGN_KEYVAULT_URL: ${{ secrets.SIGN_KEYVAULT_URL }}
	SIGN_KEYVAULT_CERTIFICATE: ${{ secrets.SIGN_KEYVAULT_CERTIFICATE }}
	with:
	project-path: src/Cake.Generator.TestApp/Cake.Generator.TestApp.csproj
	target: GitHubActions

Provide feedback