hectorsector
commented
4 months ago Thanks for the suggestion! In this case, we need more permissions than the referenced secret provides so we must keep it at a PAT.
Closed pjurczak-splunk closed 4 months ago
hectorsector
commented
4 months ago Thanks for the suggestion! In this case, we need more permissions than the referenced secret provides so we must keep it at a PAT.
pjurczak-splunk
commented
4 months ago @hectorsector thanks for feedback, meanwhile I verified GITHUB_TOKEN in GH Actions and I think that should be sufficient.
"At the start of each workflow job, GitHub automatically creates a unique GITHUB_TOKEN secret to use in your workflow. You can use the GITHUB_TOKEN to authenticate in the workflow job." https://docs.github.com/en/actions/security-guides/automatic-token-authentication
Currently possible to automatically authenticate with GitHub provided token on behalf of GitHub Actions
https://docs.github.com/en/actions/security-guides/automatic-token-authentication