Run Check on PR using secrets

I have some actions that I’d like to run with secrets on PRs originating from forks. Is there a workaround to do this, even manually?

The closest I’ve found is taking the branch from the fork, pushing it to the repo, and closing/reopening the pull request. But that’s not a great experience.

Short answer: Yes, but it comes with significant security risks. :warning:

For a longer answer and how to handle those risks, there’s this blog post from the GitHub Security Lab: