Add TEST_SECRET to CD workflows for secure file writing

Decatur-Robotics · Nov 17, 2024 · b423436 · b423436
1 parent 5e48381
commit b423436
Show file tree

Hide file tree

Showing 2 changed files with 5 additions and 2 deletions.
diff --git a/.github/workflows/cd.yml b/.github/workflows/cd.yml
@@ -5,6 +5,8 @@ on:
     secrets:
       GHCR_TOKEN:
         required: true
+      TEST_SECRET:
+        required: true
   workflow_dispatch: # Allows manual triggering of the workflow
 
 jobs:
@@ -19,7 +21,7 @@ jobs:
         uses: docker/setup-buildx-action@v3
 
       - name: Write file
-        run: echo "test" > test.txt
+        run: echo "${{ secrets.TEST_SECRET }}" > test.txt
 
       - name: Build and export
         uses: docker/build-push-action@v6

diff --git a/.github/workflows/onpush.yml b/.github/workflows/onpush.yml
@@ -15,4 +15,5 @@ jobs:
       - ci
     uses: ./.github/workflows/cd.yml
     secrets:
-      GHCR_TOKEN: ${{ secrets.GHCR_TOKEN }}
+      GHCR_TOKEN: ${{ secrets.GHCR_TOKEN }}
+      TEST_SECRET: ${{ secrets.TEST_SECRET }}