Reveal secret vars only for non-fork Pull Requests

gmaclennan · March 17, 2020, 11:21am

Description of the feature request

Currently Secret Vars are either not available to any PR, or available to all PRs, including PRs from forked repos. Github Actions and Travis CI both allow access to secret vars from PRs from non-fork PRs.

Use case / for what or how I would use it

Making Secret Vars available to PRs from forked repos is a security risk, but making them available for internal PRs is very useful (creating signed test builds, adding comments to PRs, etc).

koral · March 17, 2020, 10:00pm

It seems that you can currently achieve the same result in a little bit different way.

On Bitrise If secret is available to PR builds and PR is from a fork then the build need to be manually approved.

Topic		Replies	Views
Secret Env Vars and (Generic) File Storage files: control whether it's available in Pull Request builds Released released	8	3378	October 9, 2017
Expose for pull requests Question & Answer	3	1646	July 17, 2021
Secret Env Vars and (Generic) File Storage files: control whether it’s available in Pull Request builds Changelog announcements	0	1193	September 22, 2017
Don't build PRs from forks Website	2	798	June 19, 2018
How Public are App Env Vars? Question & Answer	2	764	January 9, 2017

Reveal secret vars only for non-fork Pull Requests

Description of the feature request

Use case / for what or how I would use it

Related Topics