Since we can't access secure variables on pull requests, these will fail. So just skip signing if it's not a dev/master build.