chore: run release workflow from production environment

DopplerHQ / cli

The official CLI for interacting with your Doppler secrets and configuration.

https://docs.doppler.com

Apache License 2.0

214 stars 43 forks source link

chore: run release workflow from production environment #337

Closed Piccirello closed 1 year ago

Piccirello commented 1 year ago

This allows us to better control which branches can access the synced secrets, as well as requiring an approval flow.

Piccirello commented 1 year ago

I suppose Environments does solve the "anyone can write a workflow" issue -- nice!

It does appear to, and also allows us to setup an explicit approval process before executing the workflow. This workaround should be better documented!