Ad-hoc GitHub App - Githubissues

ashvardanian / tinysemver

Tiny Semantic Versioning (SemVer) library and GitHub CI, that doesn't depend on 300K lines of JavaScript code and fits in a single Python file

https://github.com/marketplace/actions/tinysemver

Apache License 2.0

14 stars 3 forks source link

Ad-hoc GitHub App #10

Open ashvardanian opened 1 month ago

ashvardanian commented 1 month ago

As mentioned by @danielealbano on LinkedIn:

people can create ad hoc github apps (which is basically like an identity / service principal) and then add an action to fetch a token for that given app in the pipeline.

This will avoid having to create and store pats and at the same time it will not bind the pipelines to one person.

Creating a github app and adding the step in the pipeline to retrieve the token requires literally just minutes.

More details.