Sanitize CI_COMMIT_TAG_MESSAGE to exclude signatures

Vasilii Iakliushinrequested to merge
583219-sanitize-ci-tag-message-variable into master

What does this MR do and why?

Contributes to #583219

Problem

CI_COMMIT_TAG_MESSAGE variable was populating raw tag messages including SSH, PGP, and other signature blocks. This caused signatures to appear in release descriptions when using the variable in CI/CD pipelines.

Soluton

Apply strip_signature sanitization used in the UI to clean tag messages before exposing them as CI variables.

References

Sanitize CI_COMMIT_TAG_MESSAGE to exclude SSH s... (#583219)

MR acceptance checklist

Evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.

Related to #583219

Merge request reports