.env– containsGITHUB_TOKEN,VITE_GITHUB_CLIENT_ID, etc. (ignored by git)gitforge.config.json– can containgithubToken(ignored by git)- Personal access tokens (ghp_, github_pat_)
- OAuth client secrets (we only use Client ID; no secret in browser)
.env.example– template with empty values, no secretsgitforge.config.example.json– template withgithubToken: null
-
Secrets (Settings → Secrets and variables → Actions):
GITHUB_TOKEN– built-in, or your PAT for private reposVITE_GITHUB_CLIENT_ID– OAuth App Client ID (for admin panel)
-
Variables:
VITE_GITHUB_OWNERandVITE_GITHUB_REPOare set automatically from the repo in the workflow.
# Ensure no env files are staged
git status
# .env, .env.local should NOT appear
# If accidentally added, unstage:
git reset HEAD .env .env.local