fix(updater): 使用带密码的签名密钥对，修复 CI 签名失败

Tauri CLI 2.x 生成无密码密钥存在已知 bug（tauri-apps/tauri#14829）。
按主流方案改为使用带密码的密钥对：
- 重新生成带密码的 updater 签名密钥
- 同步更新公钥到 tauri.conf.json 和 tauri.key.pub
- CI workflow 增加 TAURI_SIGNING_PRIVATE_KEY_PASSWORD 环境变量

.github/workflows/release.yml

@@ -94,6 +94,7 @@ jobs:
         env:
           VITE_API_BASE_URL: https://dev.tapi.meijiaka.cn/api/v1
           TAURI_SIGNING_PRIVATE_KEY: ${{ secrets.TAURI_SIGNING_PRIVATE_KEY }}
+          TAURI_SIGNING_PRIVATE_KEY_PASSWORD: ${{ secrets.TAURI_SIGNING_PRIVATE_KEY_PASSWORD }}
 
       - name: Upload artifacts
         uses: actions/upload-artifact@v4
@@ -170,6 +171,7 @@ jobs:
         env:
           VITE_API_BASE_URL: https://dev.tapi.meijiaka.cn/api/v1
           TAURI_SIGNING_PRIVATE_KEY: ${{ secrets.TAURI_SIGNING_PRIVATE_KEY }}
+          TAURI_SIGNING_PRIVATE_KEY_PASSWORD: ${{ secrets.TAURI_SIGNING_PRIVATE_KEY_PASSWORD }}
 
       - name: Upload artifacts
         uses: actions/upload-artifact@v4

tauri-app/src-tauri/tauri.conf.json

@@ -41,7 +41,7 @@
   "plugins": {
     "opener": {},
     "updater": {
-      "pubkey": "dW50cnVzdGVkIGNvbW1lbnQ6IG1pbmlzaWduIHB1YmxpYyBrZXk6IDM5NjNFN0RGNjA0Q0MyOTQKUldTVXdreGczK2RqT1VXeXdKcnhERC9UcGdQazVqajBWcld2YjVUYjBKVnlveGhranNrUUlmMXgK",
+      "pubkey": "dW50cnVzdGVkIGNvbW1lbnQ6IG1pbmlzaWduIHB1YmxpYyBrZXk6IDIwOEVEODY4MTgyRkJFRTMKUldUanZpOFlhTmlPSUJzS0FLL1NMUEgzLzRtNXpsT1FoTXZlS3JLOHJvak5KeThIeDJQRFpJZWgK",
       "endpoints": [
         "https://dev.tapi.meijiaka.cn/api/v1/update/check?version={{current_version}}&target={{target}}&arch={{arch}}"
       ]

tauri-app/src-tauri/tauri.key.pub

@@ -1 +1 @@
-dW50cnVzdGVkIGNvbW1lbnQ6IG1pbmlzaWduIHB1YmxpYyBrZXk6IDM5NjNFN0RGNjA0Q0MyOTQKUldTVXdreGczK2RqT1VXeXdKcnhERC9UcGdQazVqajBWcld2YjVUYjBKVnlveGhranNrUUlmMXgK
+dW50cnVzdGVkIGNvbW1lbnQ6IG1pbmlzaWduIHB1YmxpYyBrZXk6IDIwOEVEODY4MTgyRkJFRTMKUldUanZpOFlhTmlPSUJzS0FLL1NMUEgzLzRtNXpsT1FoTXZlS3JLOHJvak5KeThIeDJQRFpJZWgK