Pass the PR origin's Repository Settings alongside Github Pull Request

The issue: Cannot accurately test Pull Requests from outside repositories when the Travis-CI tests require secure environment variables.

Proposal: If the origin of the PR has environment variables in its Repository Settings, include those variables for the Travis-CI tests.


If Travis-CI included my repo’s Repository Settings when testing PR originating from my repo, then that PR would have passed CI.

To distinguish something, PR-Target envs still won’t be included because the PR can expose the secure envs. I’m only proposing that we include PR-Origin envs because the Origin of the PR will control the code which is being tested through CI.

This maintains security because the origin of the PR is aware (or should be aware) of the Travis-CI tests prior to sending the PR.

Alternatively, if the commit has already passed CI (as in the example above), then skip CI tests on PR.

3 posts were merged into an existing topic: Allow external pull requests to use secret variables from the forked repo