Tokenless authentication

Oct 01, 2022

Since we launched Foresight's Test and Workflow kit, we’ve been receiving requests from Open Source projects to integrate our analysis into their public pipelines so that the contributors can benefit it. In order to open-source contributors can also see the Foresight analysis, our actions don't require any API key from now on!

We’ve released a new authentication approach for public repositories called tokenless authentication. Instead of an API key, tokenless authentication uses your CI/CD service provider's public API to verify that the actions are being used in a legitimate pipeline.