https://deploy-preview-3174--ornate-narwhal-088216.netlify.app/tags/oidc/Recent content in OIDC onHugo -- gohugo.ioen-USTue, 23 Dec 2025 15:04:05 +0100https://deploy-preview-3174--ornate-narwhal-088216.netlify.app/open-source/octo-sts/overview/Tue, 23 Dec 2025 15:04:05 +0100https://deploy-preview-3174--ornate-narwhal-088216.netlify.app/open-source/octo-sts/overview/Octo STS is a GitHub App developed by Chainguard that acts as a Security Token Service (STS) for the GitHub API. It enables workloads running anywhere that can produce OIDC tokens to federate with GitHub, exchanging those tokens for short-lived GitHub access tokens. The primary goal is to eliminate the need for GitHub Personal Access Tokens (PATs), which are long-lived credentials that pose significant security risks. Why Octo STS Matters Long-lived access tokens are a common target in security incidents.