Menu
The project I'm working on currently deploys our private node packages via github packages. Our current workflow is for each developer to create and maintain their own personal access token, and then we use a central account's PAT for automation in AWS.
I was wondering if it's possible to authenticate with github packages without the use of Actions or PAT's?
311
asked Apr 25 '26 04:04
No, it is not possible to use github packages without a personal access token (PAT):
As early as 2019-10-20, people have requested github to remove PATs as a requirement for mainly downloading public packages.
The idea is that users of libraries should not need to have a github account to access a developer's package.
Sadly, the request for pat-less package downloads was not granted by Github to this day.
If you want a package registry without a hassle, it might be wise to look for other registries, such as MavenCentral or JitPack (not necessarily meant for node packages),
or host a service yourself.
I even had to link a cached webpage, as the original question has been removed from Github community along with a bunch of related questions. Another question on github, stating pat-less access to packages is still on the roadmap for "fall 2021" is here. I could not find what the current status of this feature is.
Edit: It is possible to download binaries without a PAT for public repositories using jitpack.io. Jitpack builds the given jar/aar on their servers. You can add jitpack as a repository to your build system, and use the jitpack-specified URL to reference releases, branches, or specific commits. Sadly, there is no way to refer to packages (yet). However, this system allows your users to use your code without needing PATs nor a Github account.
106
answered Apr 26 '26 16:04
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With