Reveal secret vars only for non-fork Pull Requests

gmaclennan · March 17, 2020, 11:21am

Description of the feature request

Currently Secret Vars are either not available to any PR, or available to all PRs, including PRs from forked repos. Github Actions and Travis CI both allow access to secret vars from PRs from non-fork PRs.

Use case / for what or how I would use it

Making Secret Vars available to PRs from forked repos is a security risk, but making them available for internal PRs is very useful (creating signed test builds, adding comments to PRs, etc).

koral · March 17, 2020, 10:00pm

It seems that you can currently achieve the same result in a little bit different way.

On Bitrise If secret is available to PR builds and PR is from a fork then the build need to be manually approved.

Topic		Replies	Views
Expose for pull requests Question & Answer	3	1478	July 17, 2021
Allowing developers to modify workflows without exposing secrets Question & Answer	3	1645	November 22, 2018
Disable manual approval for public repositories Website	8	815	January 8, 2020
Bitrise status doesn't show up in github's PR Question & Answer	4	3415	April 30, 2018
Why is Bitrise not reporting build results on my GitHub pull requests? Website Issues github	7	8558	June 20, 2018

Reveal secret vars only for non-fork Pull Requests

Description of the feature request

Use case / for what or how I would use it

Related Topics