The purpose of this is to cleanup the keys created in the ci workflow that were not destroyed.
I have thought about including this in the cleanup workflow as a cron job, but currently there's no way to check if a key has active keyversions. So if we are going to use the cron job, we need to go through all keys and disable key version in those keys. It could take a lot of time in the future if we have ran too many times for the ci workflow.
I have enabled the option to destroy all key versions for all keys in the keyring when the input key_id is empty.
The purpose of this is to cleanup the keys created in the ci workflow that were not destroyed.
I have thought about including this in the
cleanupworkflow as a cron job, but currently there's no way to check if a key has active keyversions. So if we are going to use the cron job, we need to go through all keys and disable key version in those keys. It could take a lot of time in the future if we have ran too many times for the ci workflow.I have enabled the option to destroy all key versions for all keys in the keyring when the input
key_idis empty.