Skip to content

Commit f48303c

Browse files
gr2mgr2m
committed
build: update script to utilize @octokit/openapi as source of app permissions
1 parent 5275c2e commit f48303c

File tree

2 files changed

+412
-25
lines changed

2 files changed

+412
-25
lines changed

scripts/generated/app-permissions.json

Lines changed: 395 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,395 @@
1+
{
2+
"title": "App Permissions",
3+
"type": "object",
4+
"description": "The permissions granted to the user access token.",
5+
"properties": {
6+
"actions": {
7+
"type": "string",
8+
"description": "The level of permission to grant the access token for GitHub Actions workflows, workflow runs, and artifacts.",
9+
"enum": [
10+
"read",
11+
"write"
12+
]
13+
},
14+
"administration": {
15+
"type": "string",
16+
"description": "The level of permission to grant the access token for repository creation, deletion, settings, teams, and collaborators creation.",
17+
"enum": [
18+
"read",
19+
"write"
20+
]
21+
},
22+
"checks": {
23+
"type": "string",
24+
"description": "The level of permission to grant the access token for checks on code.",
25+
"enum": [
26+
"read",
27+
"write"
28+
]
29+
},
30+
"codespaces": {
31+
"type": "string",
32+
"description": "The level of permission to grant the access token to create, edit, delete, and list Codespaces.",
33+
"enum": [
34+
"read",
35+
"write"
36+
]
37+
},
38+
"contents": {
39+
"type": "string",
40+
"description": "The level of permission to grant the access token for repository contents, commits, branches, downloads, releases, and merges.",
41+
"enum": [
42+
"read",
43+
"write"
44+
]
45+
},
46+
"dependabot_secrets": {
47+
"type": "string",
48+
"description": "The leve of permission to grant the access token to manage Dependabot secrets.",
49+
"enum": [
50+
"read",
51+
"write"
52+
]
53+
},
54+
"deployments": {
55+
"type": "string",
56+
"description": "The level of permission to grant the access token for deployments and deployment statuses.",
57+
"enum": [
58+
"read",
59+
"write"
60+
]
61+
},
62+
"environments": {
63+
"type": "string",
64+
"description": "The level of permission to grant the access token for managing repository environments.",
65+
"enum": [
66+
"read",
67+
"write"
68+
]
69+
},
70+
"issues": {
71+
"type": "string",
72+
"description": "The level of permission to grant the access token for issues and related comments, assignees, labels, and milestones.",
73+
"enum": [
74+
"read",
75+
"write"
76+
]
77+
},
78+
"metadata": {
79+
"type": "string",
80+
"description": "The level of permission to grant the access token to search repositories, list collaborators, and access repository metadata.",
81+
"enum": [
82+
"read",
83+
"write"
84+
]
85+
},
86+
"packages": {
87+
"type": "string",
88+
"description": "The level of permission to grant the access token for packages published to GitHub Packages.",
89+
"enum": [
90+
"read",
91+
"write"
92+
]
93+
},
94+
"pages": {
95+
"type": "string",
96+
"description": "The level of permission to grant the access token to retrieve Pages statuses, configuration, and builds, as well as create new builds.",
97+
"enum": [
98+
"read",
99+
"write"
100+
]
101+
},
102+
"pull_requests": {
103+
"type": "string",
104+
"description": "The level of permission to grant the access token for pull requests and related comments, assignees, labels, milestones, and merges.",
105+
"enum": [
106+
"read",
107+
"write"
108+
]
109+
},
110+
"repository_custom_properties": {
111+
"type": "string",
112+
"description": "The level of permission to grant the access token to view and edit custom properties for a repository, when allowed by the property.",
113+
"enum": [
114+
"read",
115+
"write"
116+
]
117+
},
118+
"repository_hooks": {
119+
"type": "string",
120+
"description": "The level of permission to grant the access token to manage the post-receive hooks for a repository.",
121+
"enum": [
122+
"read",
123+
"write"
124+
]
125+
},
126+
"repository_projects": {
127+
"type": "string",
128+
"description": "The level of permission to grant the access token to manage repository projects, columns, and cards.",
129+
"enum": [
130+
"read",
131+
"write",
132+
"admin"
133+
]
134+
},
135+
"secret_scanning_alerts": {
136+
"type": "string",
137+
"description": "The level of permission to grant the access token to view and manage secret scanning alerts.",
138+
"enum": [
139+
"read",
140+
"write"
141+
]
142+
},
143+
"secrets": {
144+
"type": "string",
145+
"description": "The level of permission to grant the access token to manage repository secrets.",
146+
"enum": [
147+
"read",
148+
"write"
149+
]
150+
},
151+
"security_events": {
152+
"type": "string",
153+
"description": "The level of permission to grant the access token to view and manage security events like code scanning alerts.",
154+
"enum": [
155+
"read",
156+
"write"
157+
]
158+
},
159+
"single_file": {
160+
"type": "string",
161+
"description": "The level of permission to grant the access token to manage just a single file.",
162+
"enum": [
163+
"read",
164+
"write"
165+
]
166+
},
167+
"statuses": {
168+
"type": "string",
169+
"description": "The level of permission to grant the access token for commit statuses.",
170+
"enum": [
171+
"read",
172+
"write"
173+
]
174+
},
175+
"vulnerability_alerts": {
176+
"type": "string",
177+
"description": "The level of permission to grant the access token to manage Dependabot alerts.",
178+
"enum": [
179+
"read",
180+
"write"
181+
]
182+
},
183+
"workflows": {
184+
"type": "string",
185+
"description": "The level of permission to grant the access token to update GitHub Actions workflow files.",
186+
"enum": [
187+
"write"
188+
]
189+
},
190+
"members": {
191+
"type": "string",
192+
"description": "The level of permission to grant the access token for organization teams and members.",
193+
"enum": [
194+
"read",
195+
"write"
196+
]
197+
},
198+
"organization_administration": {
199+
"type": "string",
200+
"description": "The level of permission to grant the access token to manage access to an organization.",
201+
"enum": [
202+
"read",
203+
"write"
204+
]
205+
},
206+
"organization_custom_roles": {
207+
"type": "string",
208+
"description": "The level of permission to grant the access token for custom repository roles management.",
209+
"enum": [
210+
"read",
211+
"write"
212+
]
213+
},
214+
"organization_custom_org_roles": {
215+
"type": "string",
216+
"description": "The level of permission to grant the access token for custom organization roles management.",
217+
"enum": [
218+
"read",
219+
"write"
220+
]
221+
},
222+
"organization_custom_properties": {
223+
"type": "string",
224+
"description": "The level of permission to grant the access token for custom property management.",
225+
"enum": [
226+
"read",
227+
"write",
228+
"admin"
229+
]
230+
},
231+
"organization_copilot_seat_management": {
232+
"type": "string",
233+
"description": "The level of permission to grant the access token for managing access to GitHub Copilot for members of an organization with a Copilot Business subscription. This property is in public preview and is subject to change.",
234+
"enum": [
235+
"write"
236+
]
237+
},
238+
"organization_announcement_banners": {
239+
"type": "string",
240+
"description": "The level of permission to grant the access token to view and manage announcement banners for an organization.",
241+
"enum": [
242+
"read",
243+
"write"
244+
]
245+
},
246+
"organization_events": {
247+
"type": "string",
248+
"description": "The level of permission to grant the access token to view events triggered by an activity in an organization.",
249+
"enum": [
250+
"read"
251+
]
252+
},
253+
"organization_hooks": {
254+
"type": "string",
255+
"description": "The level of permission to grant the access token to manage the post-receive hooks for an organization.",
256+
"enum": [
257+
"read",
258+
"write"
259+
]
260+
},
261+
"organization_personal_access_tokens": {
262+
"type": "string",
263+
"description": "The level of permission to grant the access token for viewing and managing fine-grained personal access token requests to an organization.",
264+
"enum": [
265+
"read",
266+
"write"
267+
]
268+
},
269+
"organization_personal_access_token_requests": {
270+
"type": "string",
271+
"description": "The level of permission to grant the access token for viewing and managing fine-grained personal access tokens that have been approved by an organization.",
272+
"enum": [
273+
"read",
274+
"write"
275+
]
276+
},
277+
"organization_plan": {
278+
"type": "string",
279+
"description": "The level of permission to grant the access token for viewing an organization's plan.",
280+
"enum": [
281+
"read"
282+
]
283+
},
284+
"organization_projects": {
285+
"type": "string",
286+
"description": "The level of permission to grant the access token to manage organization projects and projects public preview (where available).",
287+
"enum": [
288+
"read",
289+
"write",
290+
"admin"
291+
]
292+
},
293+
"organization_packages": {
294+
"type": "string",
295+
"description": "The level of permission to grant the access token for organization packages published to GitHub Packages.",
296+
"enum": [
297+
"read",
298+
"write"
299+
]
300+
},
301+
"organization_secrets": {
302+
"type": "string",
303+
"description": "The level of permission to grant the access token to manage organization secrets.",
304+
"enum": [
305+
"read",
306+
"write"
307+
]
308+
},
309+
"organization_self_hosted_runners": {
310+
"type": "string",
311+
"description": "The level of permission to grant the access token to view and manage GitHub Actions self-hosted runners available to an organization.",
312+
"enum": [
313+
"read",
314+
"write"
315+
]
316+
},
317+
"organization_user_blocking": {
318+
"type": "string",
319+
"description": "The level of permission to grant the access token to view and manage users blocked by the organization.",
320+
"enum": [
321+
"read",
322+
"write"
323+
]
324+
},
325+
"team_discussions": {
326+
"type": "string",
327+
"description": "The level of permission to grant the access token to manage team discussions and related comments.",
328+
"enum": [
329+
"read",
330+
"write"
331+
]
332+
},
333+
"email_addresses": {
334+
"type": "string",
335+
"description": "The level of permission to grant the access token to manage the email addresses belonging to a user.",
336+
"enum": [
337+
"read",
338+
"write"
339+
]
340+
},
341+
"followers": {
342+
"type": "string",
343+
"description": "The level of permission to grant the access token to manage the followers belonging to a user.",
344+
"enum": [
345+
"read",
346+
"write"
347+
]
348+
},
349+
"git_ssh_keys": {
350+
"type": "string",
351+
"description": "The level of permission to grant the access token to manage git SSH keys.",
352+
"enum": [
353+
"read",
354+
"write"
355+
]
356+
},
357+
"gpg_keys": {
358+
"type": "string",
359+
"description": "The level of permission to grant the access token to view and manage GPG keys belonging to a user.",
360+
"enum": [
361+
"read",
362+
"write"
363+
]
364+
},
365+
"interaction_limits": {
366+
"type": "string",
367+
"description": "The level of permission to grant the access token to view and manage interaction limits on a repository.",
368+
"enum": [
369+
"read",
370+
"write"
371+
]
372+
},
373+
"profile": {
374+
"type": "string",
375+
"description": "The level of permission to grant the access token to manage the profile settings belonging to a user.",
376+
"enum": [
377+
"write"
378+
]
379+
},
380+
"starring": {
381+
"type": "string",
382+
"description": "The level of permission to grant the access token to list and manage repositories a user is starring.",
383+
"enum": [
384+
"read",
385+
"write"
386+
]
387+
}
388+
},
389+
"example": {
390+
"contents": "read",
391+
"issues": "read",
392+
"deployments": "write",
393+
"single_file": "read"
394+
}
395+
}

0 commit comments

Comments
 (0)