Org specific access tokens?

I’m deploying a project for a client and I don’t want to use my own personal token that has access to multiple orgs for the GH Action deploy.

What should I do?
I tried creating a new account, but it’s marked as high risk:

Have you considered creating a new organisation in your existing account? That might work better - but it does use the same token, so might not work for you.

Could you send an email to about the high risk account? We can enable it there.

I’ve created the org using the old account and it works using my old account. But I created a new account to use its access token and this account is marked as high risk.
I’ve already email support regarding the org.