Skip to content

chinmina/chinmina-bridge

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

678 Commits
.development
.development
 
 
.github/workflows
.github/workflows
 
 
.vscode
.vscode
 
 
agent
agent
 
 
cmd/create
cmd/create
 
 
docs
docs
 
 
helper
helper
 
 
integration
integration
 
 
internal
internal
 
 
testdata
testdata
 
 
.envrc
.envrc
 
 
.gitignore
.gitignore
 
 
.golangci.yaml
.golangci.yaml
 
 
.goreleaser.yaml
.goreleaser.yaml
 
 
.tool-versions
.tool-versions
 
 
.worktreeinclude
.worktreeinclude
 
 
AGENTS.md
AGENTS.md
 
 
CLAUDE.md
CLAUDE.md
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
api_integration_test.go
api_integration_test.go
 
 
ci-only.sh
ci-only.sh
 
 
codecov.yml
codecov.yml
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
handlers.go
handlers.go
 
 
handlers_test.go
handlers_test.go
 
 
harness_integration_test.go
harness_integration_test.go
 
 
main.go
main.go
 
 
renovate-merge-workflow.md
renovate-merge-workflow.md
 
 
renovate-project-specific-fixes.md
renovate-project-specific-fixes.md
 
 
renovate.json5
renovate.json5
 
 
server.go
server.go
 
 
server_test.go
server_test.go
 
 

Repository files navigation

Chinmina Bridge

Chinmina Docs Ask DeepWiki

Connect Buildkite to GitHub with secure, short-lived tokens.

Chinmina Bridge allows Buildkite agents to securely generate GitHub API tokens that can be used to perform Git or other GitHub API actions. It is intended to be an alternative to the use of SSH deploy keys or long-lived Personal Access Tokens.

High level Chinmina diagram

The bridge itself is an HTTP endpoint that uses a GitHub application to create ephemeral GitHub access tokens. Requests are authorized with a Buildkite OIDC token, allowing a token to be created just for the repository associated with an executing pipeline.

Note

Further details about Chinmina Bridge are available in the documentation.

This has an expanded introduction, a getting started guide and a detailed configuration reference.

The documentation has a more detailed description of the implementation, and clear guidance on configuration and installation.

Contributing

This project welcomes contributions! For detailed guidance on contributing, including standards for pull requests, code quality, and AI-generated contributions, see the contributing guide.

Quick start:

About

Allows Buildkite agents to use ephemeral GitHub tokens to authenticate their interactions. Avoids deploy keys and long-lived PATs.

docs.chinmina.dev

Topics

github security oidc buildkite github-app

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

15 stars

Watchers

3 watching

Forks

3 forks
Report repository

Releases 35

v0.10.1 Latest
Apr 7, 2026
+ 34 releases

Contributors

Languages