Trusted Sources for Deployment Protection

In three linesVercel introduces Trusted Sources, a security mechanism using short-lived OIDC tokens to authorize protected deployments without sharing long-lived secrets. Vercel projects and external services (GitHub Actions, etc.) can be authorized via customizable from/to rules per environment.

Summary generated by Claude — human-verified