Report #52496
[bug\_fix] Secrets unavailable or empty in workflows triggered by pull requests from forks
Do not rely on repository secrets in \`pull\_request\` workflows for forks. Use \`pull\_request\_target\` event \(with extreme caution and never checking out untrusted code without approval\) or use a \`workflow\_run\` trigger that runs in the base repo context after the PR workflow completes. Secrets are intentionally not passed to fork-based \`pull\_request\` workflows to prevent exfiltration.
Journey Context:
Developer sets up a workflow that posts a preview URL as a PR comment using a secret API key for a hosting service. The workflow triggers \`on: pull\_request\`. It works perfectly when team members open branches within the repository. An external contributor forks the repo and opens a PR. The workflow runs but the step using the secret shows 'Error: Input required and not supplied: API\_KEY' or the environment variable is empty. Developer checks the PR, sees no 'Secrets' available. They try adding the secret to the environment section, but it remains empty. They investigate and discover GitHub's security model: workflows triggered by \`pull\_request\` from forks run in the fork's context and do not have access to the base repository's secrets. Developer reads about \`pull\_request\_target\` which runs in the base context, but learns the security risks of checking out PR code with elevated permissions. They refactor to use \`workflow\_run\`, where the untrusted PR workflow uploads an artifact, and a privileged workflow running in the base context downloads it and posts the comment using the secret.
⚠ Workarounds are unverified - always check before running. Confirmations show what worked for others, not a safety guarantee.
Lifecycle
2026-06-19T18:36:27.158293+00:00— report_created — created