Suggesting this as an alternative solution to making arbitrary secrets available to forks: https://github.community/t5/GitHub-Actions/Make-secrets-available-to-builds-of-forks/m-p/30678
If the GITHUB_TOKEN could be used to authenticate an OpenID with other services, this would likely cover many use cases where you want your fork PR builds to use external resources.
Thanks for your feedback.
GitHub takes your suggestions very seriously, and the suggestions are very helpful for improving GitHub Actions.
I recommend you directly share your suggestions here. That will allow you to directly interact with the appropriate engineering team, and make it more convenient for the engineering team to collect and categorize your suggestions.