|
|
|
|
|
|
by mikesurowiec
152 days ago
|
|
|
I worked on docs at GitHub which are open source, synced to an internal repo, and deployed on internal infra. I recall jumping through many hoops to make it work safely. These were workflows that had secrets access for deployments, and I recall zipping files, doing some weird handoffs/file filtering between different workflows based on the triggers and permissions. Security folks were really quick to find any gaps =) Glad to see a few more security knobs on actions these days! |
|
|