Use pinentry-gnome3 for gpg-agent on Arch

Add gpg-agent.arch.conf with pinentry-gnome3 and without enable-ssh-support
(SSH is handled by gnome-keyring on GNOME). Deploy it from profile_desktop_gnome,
overriding the common conf that uses pinentry-gtk-2 for Void.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

ansible/roles/profile_desktop_gnome/tasks/main.yml

@@ -17,6 +17,15 @@
     owner: root
     group: root
 
+- name: Deploy gpg-agent.conf for GNOME (pinentry-gnome3, no ssh-support)
+  tags: [dotfiles, dotfiles:desktop, gnome]
+  ansible.builtin.copy:
+    src: "{{ playbook_dir }}/../dotfiles/desktop/.gnupg/gpg-agent.arch.conf"
+    dest: "{{ user_home }}/.gnupg/gpg-agent.conf"
+    owner: "{{ username }}"
+    group: "{{ user_group }}"
+    mode: "0600"
+
 - name: Enable gnome-keyring PAM auth hook for GDM
   tags: [gnome]
   ansible.builtin.lineinfile: