wwarriner
commented
3 weeks ago Not feasible at this time due to security implications of current github permissions framework. The closest I can get is
(1) Trust the team to never merge PRs to gh-pages directly
(2) Restrict approve/request changes reviews to explicitly-added collaborators, i.e., our team. So no "drive by" PR + review combos. This is done on this repository.
Use this: https://github.com/marketplace/actions/deploy-mkdocs
Use a GitHub Token to and make
gh-pagesa protected branch only the bot can access.