Skip to content

Commit 48536fc

Browse files
eslermeslerm
authored
fix: add organization_administration write to verify and sync policies (#98)
Required to read and manage organization rulesets during terraform plan and apply.
1 parent 85fc679 commit 48536fc

2 files changed

Lines changed: 2 additions & 0 deletions

File tree

.github/chainguard/sync-github.sts.yaml

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -7,6 +7,7 @@ claim_pattern:
77
job_workflow_ref: chainguard-dev/infra/.github/workflows/.terraform.yaml@.*
88

99
permissions:
10+
organization_administration: write # required to manage organization rulesets
1011
administration: write # required to manage the repository
1112
contents: write # required per terraform docs (https://registry.terraform.io/providers/integrations/github/latest/docs/resources/repository)
1213
members: write # to add/remove GitHub members

.github/chainguard/verify-github.sts.yaml

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -7,6 +7,7 @@ claim_pattern:
77
job_workflow_ref: chainguard-dev/infra/.github/workflows/.terraform.yaml@.*
88

99
permissions:
10+
organization_administration: write # required to read organization rulesets
1011
administration: read # required to read the repository
1112
contents: write # required per terraform docs (https://registry.terraform.io/providers/integrations/github/latest/docs/resources/repository)
1213
members: read # to add/remove GitHub members

0 commit comments

Comments
 (0)