Github Apps to add secrets #25270
-
Can Github Apps API add secrets to repos to be used in Github Actions? It doesn’t appear to be listed but would be tremendously helpful. It is also not yet in the REST v3 Repositories API so even users can’t do it with their personal access tokens. Is this in the timeline soon and am I missing anything? Thanks so much in advance! |
Beta Was this translation helpful? Give feedback.
Replies: 16 comments
-
No, it isn’t currently possible to add secrets using either the REST or GraphQL API. I can’t make any promises as to when or if it will be added, but I’ll pass along the feedback to the team. Thanks for reaching out. |
Beta Was this translation helpful? Give feedback.
-
+1 on this. We want to be able to update the secret with short-TTL temporary credentials to limit exposure due to unintended disclosure. The ability to automatically update / rotate secrets is a must. |
Beta Was this translation helpful? Give feedback.
-
+1 for this. We require this capability to automate secret rotation. |
Beta Was this translation helpful? Give feedback.
-
Same here, having an API that allows us to add secrets would be really key for us. |
Beta Was this translation helpful? Give feedback.
-
We definitely need this, without this we cannot use Github Actions (we have workflows that we MUST dynamically generate the secrets and upload to Github, we cannot do this operation manually through UI). Is there a timeline or workaround? |
Beta Was this translation helpful? Give feedback.
-
Any update on this? Pretty surprising the API doesn’t have endpoints for this. |
Beta Was this translation helpful? Give feedback.
-
Hi all, We’re working on building this for you all now. I don’t have a date yet for when it will ship. Will announce on the change log when available. |
Beta Was this translation helpful? Give feedback.
-
Thank you @mscoutermarsh! |
Beta Was this translation helpful? Give feedback.
-
Thanks! That will be really useful for us. |
Beta Was this translation helpful? Give feedback.
-
any update on this? |
Beta Was this translation helpful? Give feedback.
-
+1. It will be really useful |
Beta Was this translation helpful? Give feedback.
-
Soon :). Keep an eye on https://twitter.com/ghchangelog. |
Beta Was this translation helpful? Give feedback.
-
Update: this is now available :slight_smile: |
Beta Was this translation helpful? Give feedback.
-
We have written a tool to track secrets usage and provide a way for centralized rotation: https://github.com/webfactory/secret-spreader It is based on the brand-new (beta) GitHub API for Actions. See the README over at the repo for full details. Feedback is very much appreciated! |
Beta Was this translation helpful? Give feedback.
-
Awesome work! With this API I have written a CLI tool, to quickly rotate all my github action’s AWS credentials. |
Beta Was this translation helpful? Give feedback.
-
I couldn’t find this feature in Github GraphQL API. Does this feature available in GraphQL API too ? |
Beta Was this translation helpful? Give feedback.
Update: this is now available :slight_smile:
https://developer.github.com/v3/actions/secrets/