diff --git a/.github/workflows/deb-publish.yml b/.github/workflows/deb-publish.yml
index 5e15e989..45959be8 100644
--- a/.github/workflows/deb-publish.yml
+++ b/.github/workflows/deb-publish.yml
@@ -157,7 +157,7 @@ jobs:
           fi
           REPO_ROOT="$MOUNTPOINT/public_html"
           mkdir -p "$REPO_ROOT"
-          if [ -n "${{ secrets.GPG_SECRET_SUBKEYS }}" ]; then
+          if [ "${{ steps.gpg.conclusion }}" != "skipped" ]; then
           cp -f /etc/apt/trusted.gpg.d/apt.bcachefs.org.asc "$REPO_ROOT"
           fi
           cat > "$REPO_ROOT/README.txt" <<EOR
@@ -166,7 +166,7 @@ jobs:
 
           wget -qO- https://apt.bcachefs.org/apt.bcachefs.org.asc | sudo tee /etc/apt/trusted.gpg.d/apt.bcachefs.org.asc
           # Fingerprint: ${{ secrets.GPG_SIGNING_SUBKEY_FINGERPRINT }}
-          sudo cat > "/etc/apt/sources.list.d/apt.bcachefs.org.sources" <<EOS
+          sudo cat > /etc/apt/sources.list.d/apt.bcachefs.org.sources <<EOS
           Types: deb deb-src
           URIs: https://apt.bcachefs.org/unstable/
           # Or replace unstable with your distro's release name
@@ -178,6 +178,10 @@ jobs:
           sudo apt install bcachefs-tools
 
 
+          Note: this will give you packages for the latest release of bcachefs-tools.
+          If you need packages for the latest git master commit,
+          replace "bcachefs-tools-release" with "bcachefs-tools-snapshot".
+
           Or you can use add-apt-repository tool. Stable channel:
 
             sudo add-apt-repository "deb https://apt.bcachefs.org/unstable bcachefs-tools-release main"
@@ -187,24 +191,20 @@ jobs:
             sudo add-apt-repository "deb https://apt.bcachefs.org/unstable bcachefs-tools-release snapshot"
 
 
-          Note: this will give you packages for the latest release of bcachefs-tools.
-          If you need packages for the latest git master commit,
-          replace `bcachefs-tools-release` with `bcachefs-tools-snapshot`.
-
           If you want to ensure that the packages from this repository are always preferred, do:
 
           mkdir -p /etc/apt/preferences.d
-          sudo cat > "/etc/apt/preferences.d/apt.bcachefs.org.pref " <<EOP
+          sudo cat > /etc/apt/preferences.d/apt.bcachefs.org.pref <<EOP
           Package: *
           Pin: origin apt.bcachefs.org
           Pin-Priority: 1000
           EOP
 
 
-          Note that yes, you should always prefer `Pin: origin <hostname>`,
-          over `Pin: release o=<origin>`, because pinning by origin
+          Note that yes, you should always prefer "Pin: origin <hostname>",
+          over "Pin: release o=<origin>", because pinning by origin
           will *actually* pin by the full hostname of APT repository,
-          whereas any repository can claim anything in it's `Origin: ` field,
+          whereas any repository can claim anything in it's "Origin: " field,
           and thus pinning by origin label is inherently insecure!