OIDC should be used when deploying to the cloud

This check passes if GitHub Actions that support OIDC are using OIDC and not a long-term secret.

Eliminates the need to use and maintain long-term secrets.

Use OIDC instead of a long-term secret for deployment Actions

1. Navigate to your dashboard.

2. Click "Overview"

3. Click "OIDC should be used when deploying to the cloud."

4. View the Compliance Status.

5. Click "Link to build log" to view the build log of the workflow.

Last updated 5 months ago