Skip to content

Commit 1079c8f

Browse files
egibsegibs
committed
chore(sync-github): add new org scopes
Add octo-sts scopes to manage roles via IAC.
1 parent 58ae9f1 commit 1079c8f

2 files changed

Lines changed: 4 additions & 0 deletions

File tree

.github/chainguard/sync-github.sts.yaml

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -13,4 +13,6 @@ permissions:
1313
members: write # to add/remove GitHub members
1414
metadata: read # to read metadata about the org
1515

16+
organization_custom_org_roles: write # required for managing custom organization roles
17+
organization_custom_roles: write # required for managing custom repository roles
1618
repositories: [] # Act over all of the repos in the org.

.github/chainguard/verify-github.sts.yaml

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -13,4 +13,6 @@ permissions:
1313
members: read # to add/remove GitHub members
1414
metadata: read # to read metadata about the org
1515

16+
organization_custom_org_roles: read # required for reading custom organization roles
17+
organization_custom_roles: read # required for reading custom repository roles
1618
repositories: [] # Act over all of the repos in the org.

0 commit comments

Comments
 (0)