Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Collect and store GH Actions and permissions Org level rules #150

Open
UlisesGascon opened this issue Dec 14, 2024 · 1 comment
Open

Collect and store GH Actions and permissions Org level rules #150

UlisesGascon opened this issue Dec 14, 2024 · 1 comment
Labels
help wanted Extra attention is needed migrations provider-github providers
Milestone
Include all the c...

Comments

@UlisesGascon
Copy link
Member

UlisesGascon commented Dec 14, 2024
edited
Loading

Similar to #147 and a requirement for #100.

The idea is to add the new columns (as NOT NULLABLE) (github_actions_enabled_repositories and github_actions_allowed_actions) to the github_organizations table. Possible values can be found in the docs.

Ideally we can fetch this information from the endpoint GET https://api.github.com/orgs/{org}/actions/permissions docs.

As expected we will need to include Json schema valdiation, seeds, fixtures and add it to the current workflow update-github-orgs
@UlisesGascon UlisesGascon mentioned this issue Dec 14, 2024
Open
24 tasks
@UlisesGascon UlisesGascon changed the title Collect and store GH Actions Org level rules Collect and store GH Actions and permissions Org level rules Dec 14, 2024
@UlisesGascon
Copy link
Member Author

We want to include GET https://api.github.com/orgs/{org}/actions/permissions/workflow too as it will provide key information (default_workflow_permissions and can_approve_pull_request_reviews) for other checks (see).

This info should be mapped as github_actions_default_workflow_permissions and github_actions_can_approve_pull_request_reviews.

This was referenced Dec 14, 2024
Open
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
help wanted Extra attention is needed migrations provider-github providers
Projects
None yet
Milestone
Include all the compliance checks
Development

No branches or pull requests
1 participant
@UlisesGascon