OIDC keyless cloud auth github-actions
Job-level perms enabling OIDC token to assume a cloud role without static keys
permissions:
id-token: write
contents: read
more github-actions
all 7 commands →
Trigger workflow with inputs
gh workflow run deploy.yml -f env=prod -f version=1.4.2 --ref main
Watch latest run live
gh run watch $(gh run list -w deploy.yml -L1 --json databaseId -q '.[0].databaseId')
Show only failed logs
gh run view <id> --log-failed | less -R
Run a job locally with act
act -j build --secret-file .secrets -P ubuntu-latest=catthehacker/ubuntu:act-22.04
Rerun only failed jobs
gh run rerun <id> --failed