How do I handle fork PRs?
Treat fork PRs as untrusted by default and keep strict fork policy unless hardened exceptions exist.
- knowledge-base
- forks
- security
Treat fork PRs as untrusted by default and keep strict fork policy unless hardened exceptions exist.
Recommended Actions
- keep fork policy blocked
- review trigger security model
Why this matters
Fork CI context is a common source of secret exposure risk.
Structured Answers
How do I handle fork PRs?
Treat fork PRs as untrusted by default and keep strict fork policy unless hardened exceptions exist.
What is the first recommended action for How do I handle fork PRs?
keep fork policy blocked