JFWooten4
commented
3 weeks ago As far as I've seen with dependabots, this is generally implemented as its own GitHub account—any username preferences/ideas? 🔩
Open JamesAlfonse opened 1 month ago
JFWooten4
commented
3 weeks ago As far as I've seen with dependabots, this is generally implemented as its own GitHub account—any username preferences/ideas? 🔩
JamesAlfonse
commented
3 weeks ago No preference here on the name. Maybe Database-bot? Database-commit?
For security reasons it should be assigned admin permissions for just the one repository. Then if other repositories need a service account, they would have segmented permissions as well.
Right now, our automated workflows for the database repository are using my personal email, which means all automated commits show up as if I made them. This makes it hard to distinguish between my manual changes and the automated ones, and it could also pose some security risks. I think we should set up a separate service account for these automated tasks. This way, commits from the automation will be clearly labeled, we can manage permissions more securely, and it will be easier to track and audit automated activities.