GitHub action secret from fork


I know that currently when a PR comes from a fork secret are not available and that this is a security feature, not a bug. But for our community, this is a huge limitation because it makes collaboration very hard.

I am wondering if there are any alternative solutions or workaround that we can use, do we have a way for example with a self-hosted runner to mitigate this limitation without exposing secrets?

Thanks a lot