Introduce an authorize job that allows code maintainers to approve a pull request to use the GitHub Action secrets. This ensures that any job requiring secrets can function for both internal and external PRs.
This is a test implementation and should only be applied to the security build job for now. If it proves successful, we will extend it to the deploy job, which also requires secret access.
Description
Introduce an
authorize
job that allows code maintainers to approve a pull request to use the GitHub Action secrets. This ensures that any job requiring secrets can function for both internal and external PRs.This is a test implementation and should only be applied to the security build job for now. If it proves successful, we will extend it to the deploy job, which also requires secret access.
References (if applicable)
https://dvc.ai/blog/testing-external-contributions-using-github-actions-secrets