https://github.com/1Password/load-secrets-action

Load secrets from 1Password into your GitHub Actions jobs
https://github.com/1Password/load-secrets-action

1password 1password-connect github-actions secrets-management service-accounts

Last synced: about 1 month ago
JSON representation

Load secrets from 1Password into your GitHub Actions jobs

• Host: GitHub
• URL: https://github.com/1Password/load-secrets-action
• Owner: 1Password
• License: mit
• Created: 2021-05-19T19:14:22.000Z (over 3 years ago)
• Default Branch: main
• Last Pushed: 2024-07-12T12:19:56.000Z (2 months ago)
• Last Synced: 2024-07-19T02:12:46.355Z (2 months ago)
• Topics: 1password, 1password-connect, github-actions, secrets-management, service-accounts
• Language: TypeScript
• Homepage: https://developer.1password.com
• Size: 736 KB
• Stars: 178
• Watchers: 13
• Forks: 25
• Open Issues: 12
• Metadata Files:
  • Readme: README.md
  • Contributing: CONTRIBUTING.md
  • License: LICENSE

Awesome Lists containing this project

README

        





  
Load Secrets from 1Password - GitHub Action

  
Provide the secrets your GitHub runner needs from 1Password.

  

    

  



---

`load-secrets-action` loads secrets from 1Password into GitHub Actions using [Service Accounts](https://developer.1password.com/docs/service-accounts) or [1Password Connect](https://developer.1password.com/docs/connect).

Specify in your workflow YAML file which secrets from 1Password should be loaded into your job, and the action will make them available as environment variables for the next steps.

Read more on the [1Password Developer Portal](https://developer.1password.com/docs/ci-cd/github-actions).

## 🪄 See it in action!

[![Using 1Password Service Accounts with GitHub Actions - showcase](https://img.youtube.com/vi/kVBl5iQYgSA/maxresdefault.jpg)](https://www.youtube.com/watch?v=kVBl5iQYgSA "Using 1Password Service Accounts with GitHub Actions")

## ✨ Quickstart

```yml

on: push

jobs:

  hello-world:

    runs-on: ubuntu-latest

    steps:

      - uses: actions/checkout@v3

      - name: Load secret

        uses: 1password/load-secrets-action@v2

        with:

          # Export loaded secrets as environment variables

          export-env: true

        env:

          OP_SERVICE_ACCOUNT_TOKEN: ${{ secrets.OP_SERVICE_ACCOUNT_TOKEN }}

          SECRET: op://app-cicd/hello-world/secret

      - name: Print masked secret

        run: 'echo "Secret: $SECRET"'

        # Prints: Secret: ***

```

## 💙 Community & Support

- File an [issue](https://github.com/1Password/load-secrets-action/issues) for bugs and feature requests.

- Join the [Developer Slack workspace](https://developer.1password.com/joinslack).

- Subscribe to the [Developer Newsletter](https://1password.com/dev-subscribe/).

## 🔐 Security

1Password requests you practice responsible disclosure if you discover a vulnerability.

Please file requests via [**BugCrowd**](https://bugcrowd.com/agilebits).

For information about security practices, please visit the [1Password Bug Bounty Program](https://bugcrowd.com/agilebits).