Things on this page are fragmentary and immature notes/thoughts of the author. Please read with your own judgement!
| Name | Short Description | Scope | Permission | Protocol |
|---|---|---|---|---|
| GitHub SSH Key |
A SSH public key | All repos | Read and Write | SSH |
| GitHub Deploy Key |
A SSH public key | Any repo configures the key |
Read (optionally write) | SSH |
| GitHub PAT | Personal access token | Any repo configures the PAT |
Read and Write | HTTPS |
| Repository Secret | Repo secret (SSH keys, PATs or anything) for authenticating GitHub APIs |
Single repo | Depends | Depends |
| Organization Secret | Org secret (SSH keys, PATs, or anything) for authenticating GitHub APIs | All repos in the org |
Depends | Depends |
Personal Access Tokens
How to create a Github read-only API token
Deploy Keys
Deploy Keys are SSH keys which access restricted to a specific repository only.
https://developer.github.com/v3/guides/managing-deploy-keys/#deploy-keys
https://docs.github.com/en/developers/overview/managing-deploy-keys#deploy-keys