This simply changes which action we use when uploading artifacts in GHA runs. actions/upload could potentially leak secrets, so this new action scans for secrets before uploading anything.
Is there anything particularly tricky?
How should this be tested?
This has been used on many repos and this is a simple case, so I'm confident it will work well. But if there is a process for testing CI on a PR that changes CI, please let me know. In general that is a good practice to have set up.
Issues
What does this solve?
This simply changes which action we use when uploading artifacts in GHA runs.
actions/upload
could potentially leak secrets, so this new action scans for secrets before uploading anything.Is there anything particularly tricky?
How should this be tested?
This has been used on many repos and this is a simple case, so I'm confident it will work well. But if there is a process for testing CI on a PR that changes CI, please let me know. In general that is a good practice to have set up.
Screenshots