How to Properly Set Up Permissions to GitHub

I’m working on an integration between Replit and our GitHub but wondering how to best set up permissions so that we have a high level of security. I currently gave Replit access to my personal GitHub account, but that doesn’t seem very secure (eg. what if Replit gets hacked? My personal GitHub has access to a lot of sensitive repos).

What would be the best practices for security between Replit and GitHub? Would it be advised to make a new GitHub user and link that instead of my personal GitHub account? Are there any specific permissions I can change?

In case anyone is wondering: I ended up creating a totally separate GitHub account with limited permissions, and created teams to only give people access to specific projects.

1 Like

just which repositories

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.