This repository is home to the Operations Engineering's tools and utilities for managing, monitoring, and optimising software development processes at the Ministry of Justice. • This repository is defined and managed in Terraform
As a member of the operations engineering team,
I want to organise and secure the GitHub personal access tokens in the moj-operations-engineering-bot account,
so that we can reduce risks, improve clarity, and align with best practices in token management.
Value
Properly managing these tokens will significantly reduce security risks by limiting their scope and improving their traceability. It will also streamline our processes by creating a clear and efficient method for future token creation and management.
The NEW_TOKEN Classic token is currently used in ministryofjustice/technical-guidance as GH_BOT_PAT_TOKEN and OPS_BOT_TOKEN in GitHub secrets for this repository.
Functional Requirements:
[x] Create new token for use in ministryofjustice/technical-guidance.
Non-Functional Requirements:
[x] New token name, description, scope, permissions etc adhere to ADR 020.
[x] New token created in moj-operations-engineering-bot account as per ADR 020
[x] The GH_BOT_PAT_TOKEN and OPS_BOT_TOKEN GitHub secrets in ministryofjustice/technical-guidance is renamed (one deleted) and updated to use the new token.
User Need
As a member of the operations engineering team, I want to organise and secure the GitHub personal access tokens in the moj-operations-engineering-bot account, so that we can reduce risks, improve clarity, and align with best practices in token management.
Value
Properly managing these tokens will significantly reduce security risks by limiting their scope and improving their traceability. It will also streamline our processes by creating a clear and efficient method for future token creation and management.
The NEW_TOKEN Classic token is currently used in
ministryofjustice/technical-guidance
asGH_BOT_PAT_TOKEN
andOPS_BOT_TOKEN
in GitHub secrets for this repository.Functional Requirements:
ministryofjustice/technical-guidance
.Non-Functional Requirements:
Acceptance Criteria:
moj-operations-engineering-bot
account as per ADR 020GH_BOT_PAT_TOKEN
andOPS_BOT_TOKEN
GitHub secrets inministryofjustice/technical-guidance
is renamed (one deleted) and updated to use the new token.