Repository secrets are used to store and manage sensitive information, such as passwords, tokens, and ssh keys. Storing this information in a secret is considered safer than storing it in your configuration file in plain text.
Push access or administrator access is required to create, update or delete repository secrets.
Manage repository secrets from the repository settings screen:
Source environment variables from named secrets:
|
|
Source plugin settings from named secrets:
|
|
Pull Requests
Secrets are not exposed to pull requests by default. This prevents a bad actor from sending a pull request and attempting to expose your secrets. You can override this default behavior, at your own risk, by checking Allow Pull Requests when you create your secret.