Great post man.
Very informative!
I wanted, however, to comment on what you said regarding Method 2:
Indeed it is not wise to share your personal access token, however, you can still use it safely with github actions as a secret this way: github.community/t/using-github-ac...
Then it makes method 2 only have one potential flaw and that is if I leave the team then the script won't work anymore for the rest of the team because my personal access token (PAT) won't have access anymore. But the fix is just to replace the secret with a new PAT of a current team member (ideally the admin who usually never leaves).
So Method 2 was what I did eventually and seems the more intuitive way with the a relatively very small downside.
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
Great post man.
Very informative!
I wanted, however, to comment on what you said regarding Method 2:
Indeed it is not wise to share your personal access token, however, you can still use it safely with github actions as a secret this way: github.community/t/using-github-ac...
Then it makes method 2 only have one potential flaw and that is if I leave the team then the script won't work anymore for the rest of the team because my personal access token (PAT) won't have access anymore. But the fix is just to replace the secret with a new PAT of a current team member (ideally the admin who usually never leaves).
So Method 2 was what I did eventually and seems the more intuitive way with the a relatively very small downside.