GitHub Training
GitHub: A web-based hosting service for software development and version control using Git. Acquired by Microsoft in 2018.Training: Instruction to develop new skills.
41 questions
Secrets are not environment variables
Carlos Quintero
120
Reputation points
it states that
Secrets are encrypted environment variables you can create to...
and in knowledge check https://learn.microsoft.com/en-us/training/modules/manage-github-actions-enterprise/knowledge-check
the question "What are encrypted secrets?" is provided with the answer:
Encrypted secrets are encrypted environment variables you can create to store sensitive information.
Both are incorrect. Secrets are variables that are accessed through the secrets context. They are NOT environment variables.
See the official documentation: https://docs.github.com/en/actions/security-guides/using-secrets-in-github-actions
Secrets are variables that you create ...
Notice that is says "variables", not "environment variables".
If you want an environment variable with a secret, you must create such environment variable with an "env" section, define a name for the environment variable and assign to it the value of the secrets context:
steps:
- name: Hello world action
...
env:
super_secret: ${{ secrets.SuperSecret }}
This question is related to the following Learning Module
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 2%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EK%3C/text%3E%3C/svg%3E)
kguntaka 2,545 Reputation points Microsoft Vendor2024-07-15T06:05:58.16+00:00 Hi Carlos Quintero,
Welcome to the Microsoft Q&A forum.
Thank you for bringing this issue to our attention. We will update you as soon as possible.
Sign in to comment
Sign in to answer