From 2e7e74b5be7fc9f172579640d97161f646c6857d Mon Sep 17 00:00:00 2001 From: mtb1337 Date: Sun, 16 Jun 2024 19:26:18 +0200 Subject: [PATCH] corrected permission name --- .../git-repositories-scms-integrations-with-snyk/README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/scm-ide-and-ci-cd-workflow-and-integrations/git-repositories-scms-integrations-with-snyk/README.md b/docs/scm-ide-and-ci-cd-workflow-and-integrations/git-repositories-scms-integrations-with-snyk/README.md index 05a35fd2d88a..752d2302cdbe 100644 --- a/docs/scm-ide-and-ci-cd-workflow-and-integrations/git-repositories-scms-integrations-with-snyk/README.md +++ b/docs/scm-ide-and-ci-cd-workflow-and-integrations/git-repositories-scms-integrations-with-snyk/README.md @@ -39,7 +39,7 @@ The Snyk GitHub integration is bound to a single user, preferably a GitHub servi The following table details the access scopes required in GitHub for Personal Access Tokens (PAT) and the scopes required for Snyk to perform the required operations on monitored repositories, such as reading manifest files on a frequent basis and opening fix or upgrade PRs. GitHub custom roles are not supported. -
Action and purposePAT scopesRepository scopes
Daily/weekly tests:
Read manifest files in private repositories.		repo (all)read
Manual fix pull requests:
Create fix PRs in monitored repositories.		repo (all)
Automatic fix and upgrade pull requests:
Create fix or upgrade PRs in monitored repositories.		repo (all)write
Snyk tests on pull requests:
Send PR status checks whenever a new PR is created, or an existing PR is updated.		repo (all)write
Initial configuration of Snyk tests on pull requests:
Used to add SCM webhooks to the imported repo		admin:repo_hooks (read & write)admin
Import new Projects to Snyk:
Present a list of all the available repos in the GitHub org in the Add Projects screen.		admin:read:org
repo (all)
+
Action and purposePAT scopesRepository scopes
Daily/weekly tests:
Read manifest files in private repositories.		repo (all)read
Manual fix pull requests:
Create fix PRs in monitored repositories.		repo (all)
Automatic fix and upgrade pull requests:
Create fix or upgrade PRs in monitored repositories.		repo (all)write
Snyk tests on pull requests:
Send PR status checks whenever a new PR is created, or an existing PR is updated.		repo (all)write
Initial configuration of Snyk tests on pull requests:
Used to add SCM webhooks to the imported repo		admin:repo_hooks (read & write)admin
Import new Projects to Snyk:
Present a list of all the available repos in the GitHub org in the Add Projects screen.		admin:org:read:org
repo (all)
Snyk uses PRs to tell GitHub Enterprise that a merge is to occur. To do this, change content is pushed into a branch, which requires the `content: write` scope. A separate call is then made to create the fix PR, which requires the `pull request: write` scope. GitHub Enterprise is then instructed to create a PR, merging the change branch into the default branch.