Managing Secrets Within Github Actions

1. Secret creation

  • Open repo
  • Go to Settings → Secrets → Add a new secret
  • Enter secret name
  • Enter secret value
  • Select Add secret
  • Add to the step (you can also add this to different levels of the workflow)

2. what are secrets

  • encrypted environment variables to be used in workflows

3. how do you make a secret available to an action?

  • either set as input in a workflow file (not covered here)
  • or set as an environment variable in a workflow file

4. github token

  • a secret automatically generated
  • can be used in a workflow
  • this is an access token that you can use to authenticate on behalf of the GitHub App installed on your repo responsible for running actions
  • constraint: only your repo
  • same as with other secrets, you need to refer it within the workflow file to make authenticated GitHub API calls with

5. list used sources



Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Pavol Kutaj

Pavol Kutaj


Infrastructure Support Engineer/Technical Writer ( with a passion for Python/writing documentation. More about me: