New translation batch for cn (#33098)

2026-01-10 09:02:35 -05:00 · 2022-11-30 09:14:57 -08:00
parent 502b5158ac
commit 116b58b1b3
21 changed files with 604 additions and 604 deletions
--- a/translations/log/msft-cn-resets.csv
+++ b/translations/log/msft-cn-resets.csv
@@ -487,7 +487,9 @@ translations/zh-CN/content/actions/learn-github-actions/expressions.md,rendering
 translations/zh-CN/content/actions/learn-github-actions/finding-and-customizing-actions.md,broken liquid tags
 translations/zh-CN/content/actions/learn-github-actions/understanding-github-actions.md,rendering error
 translations/zh-CN/content/actions/learn-github-actions/usage-limits-billing-and-administration.md,rendering error
+translations/zh-CN/content/actions/managing-issues-and-pull-requests/adding-labels-to-issues.md,broken liquid tags
 translations/zh-CN/content/actions/managing-issues-and-pull-requests/moving-assigned-issues-on-project-boards.md,broken liquid tags
+translations/zh-CN/content/actions/managing-issues-and-pull-requests/removing-a-label-when-a-card-is-added-to-a-project-board-column.md,broken liquid tags
 translations/zh-CN/content/actions/managing-workflow-runs/disabling-and-enabling-a-workflow.md,rendering error
 translations/zh-CN/content/actions/managing-workflow-runs/manually-running-a-workflow.md,rendering error
 translations/zh-CN/content/actions/managing-workflow-runs/re-running-workflows-and-jobs.md,rendering error
@@ -581,7 +583,6 @@ translations/zh-CN/content/admin/identity-and-access-management/using-enterprise
 translations/zh-CN/content/admin/identity-and-access-management/using-enterprise-managed-users-for-iam/configuring-oidc-for-enterprise-managed-users.md,rendering error
 translations/zh-CN/content/admin/identity-and-access-management/using-enterprise-managed-users-for-iam/configuring-scim-provisioning-for-enterprise-managed-users.md,rendering error
 translations/zh-CN/content/admin/identity-and-access-management/using-ldap-for-enterprise-iam/index.md,rendering error
-translations/zh-CN/content/admin/identity-and-access-management/using-saml-for-enterprise-iam/configuring-saml-single-sign-on-for-your-enterprise.md,broken liquid tags
 translations/zh-CN/content/admin/identity-and-access-management/using-saml-for-enterprise-iam/enabling-encrypted-assertions.md,rendering error
 translations/zh-CN/content/admin/identity-and-access-management/using-saml-for-enterprise-iam/saml-configuration-reference.md,broken liquid tags
 translations/zh-CN/content/admin/identity-and-access-management/using-saml-for-enterprise-iam/switching-your-saml-configuration-from-an-organization-to-an-enterprise-account.md,broken liquid tags
@@ -612,7 +613,6 @@ translations/zh-CN/content/admin/packages/getting-started-with-github-packages-f
 translations/zh-CN/content/admin/packages/migrating-your-enterprise-to-the-container-registry-from-the-docker-registry.md,rendering error
 translations/zh-CN/content/admin/policies/enforcing-policies-for-your-enterprise/about-enterprise-policies.md,broken liquid tags
 translations/zh-CN/content/admin/policies/enforcing-policies-for-your-enterprise/enforcing-policies-for-github-actions-in-your-enterprise.md,rendering error
-translations/zh-CN/content/admin/policies/enforcing-policies-for-your-enterprise/enforcing-policies-for-security-settings-in-your-enterprise.md,broken liquid tags
 translations/zh-CN/content/admin/policies/enforcing-policies-for-your-enterprise/enforcing-repository-management-policies-in-your-enterprise.md,broken liquid tags
 translations/zh-CN/content/admin/policies/enforcing-policy-with-pre-receive-hooks/about-pre-receive-hooks.md,rendering error
 translations/zh-CN/content/admin/policies/enforcing-policy-with-pre-receive-hooks/creating-a-pre-receive-hook-script.md,rendering error
@@ -636,7 +636,6 @@ translations/zh-CN/content/authentication/connecting-to-github-with-ssh/checking
 translations/zh-CN/content/authentication/connecting-to-github-with-ssh/generating-a-new-ssh-key-and-adding-it-to-the-ssh-agent.md,rendering error
 translations/zh-CN/content/authentication/connecting-to-github-with-ssh/testing-your-ssh-connection.md,rendering error
 translations/zh-CN/content/authentication/keeping-your-account-and-data-secure/about-authentication-to-github.md,rendering error
-translations/zh-CN/content/authentication/keeping-your-account-and-data-secure/authorizing-oauth-apps.md,rendering error
 translations/zh-CN/content/authentication/keeping-your-account-and-data-secure/creating-a-personal-access-token.md,rendering error
 translations/zh-CN/content/authentication/keeping-your-account-and-data-secure/creating-a-strong-password.md,rendering error
 translations/zh-CN/content/authentication/keeping-your-account-and-data-secure/preventing-unauthorized-access.md,rendering error
@@ -855,7 +854,7 @@ translations/zh-CN/content/organizations/managing-organization-settings/managing
 translations/zh-CN/content/organizations/managing-organization-settings/setting-permissions-for-adding-outside-collaborators.md,rendering error
 translations/zh-CN/content/organizations/managing-peoples-access-to-your-organization-with-roles/managing-security-managers-in-your-organization.md,rendering error
 translations/zh-CN/content/organizations/managing-saml-single-sign-on-for-your-organization/configuring-saml-single-sign-on-and-scim-using-okta.md,rendering error
-translations/zh-CN/content/organizations/managing-saml-single-sign-on-for-your-organization/enabling-and-testing-saml-single-sign-on-for-your-organization.md,broken liquid tags
+translations/zh-CN/content/organizations/managing-saml-single-sign-on-for-your-organization/enabling-and-testing-saml-single-sign-on-for-your-organization.md,rendering error
 translations/zh-CN/content/organizations/organizing-members-into-teams/about-teams.md,broken liquid tags
 translations/zh-CN/content/organizations/organizing-members-into-teams/managing-code-review-settings-for-your-team.md,rendering error
 translations/zh-CN/content/packages/learn-github-packages/about-permissions-for-github-packages.md,rendering error
@@ -923,6 +922,7 @@ translations/zh-CN/content/repositories/managing-your-repositorys-settings-and-f
 translations/zh-CN/content/repositories/managing-your-repositorys-settings-and-features/managing-repository-settings/managing-teams-and-people-with-access-to-your-repository.md,rendering error
 translations/zh-CN/content/repositories/managing-your-repositorys-settings-and-features/managing-repository-settings/setting-repository-visibility.md,rendering error
 translations/zh-CN/content/repositories/releasing-projects-on-github/about-releases.md,rendering error
+translations/zh-CN/content/repositories/releasing-projects-on-github/automatically-generated-release-notes.md,broken liquid tags
 translations/zh-CN/content/repositories/releasing-projects-on-github/comparing-releases.md,rendering error
 translations/zh-CN/content/repositories/releasing-projects-on-github/linking-to-releases.md,rendering error
 translations/zh-CN/content/repositories/releasing-projects-on-github/managing-releases-in-a-repository.md,rendering error
@@ -1030,7 +1030,6 @@ translations/zh-CN/data/reusables/advanced-security/secret-scanning-add-custom-p
 translations/zh-CN/data/reusables/advanced-security/secret-scanning-create-custom-pattern.md,rendering error
 translations/zh-CN/data/reusables/advanced-security/secret-scanning-push-protection-org.md,broken liquid tags
 translations/zh-CN/data/reusables/apps/user-to-server-rate-limits.md,broken liquid tags
-translations/zh-CN/data/reusables/audit_log/audit-log-action-categories.md,broken liquid tags
 translations/zh-CN/data/reusables/audit_log/audit_log_sidebar_for_org_admins.md,rendering error
 translations/zh-CN/data/reusables/audit_log/audit_log_sidebar_for_site_admins.md,rendering error
 translations/zh-CN/data/reusables/branches/new-repo-default-branch.md,rendering error
@@ -1106,7 +1105,6 @@ translations/zh-CN/data/reusables/getting-started/enforcing-repo-management-poli
 translations/zh-CN/data/reusables/getting-started/enterprise-advanced-security.md,broken liquid tags
 translations/zh-CN/data/reusables/getting-started/managing-enterprise-members.md,rendering error
 translations/zh-CN/data/reusables/git/git-push.md,rendering error
-translations/zh-CN/data/reusables/identity-and-permissions/ip-allow-lists-enterprise.md,broken liquid tags
 translations/zh-CN/data/reusables/identity-and-permissions/vigilant-mode-beta-note.md,rendering error
 translations/zh-CN/data/reusables/large_files/storage_assets_location.md,broken liquid tags
 translations/zh-CN/data/reusables/large_files/use_lfs_tip.md,rendering error
@@ -1118,7 +1116,6 @@ translations/zh-CN/data/reusables/organizations/github-apps-settings-sidebar.md,
 translations/zh-CN/data/reusables/organizations/member-privileges.md,rendering error
 translations/zh-CN/data/reusables/organizations/navigate-to-org.md,rendering error
 translations/zh-CN/data/reusables/organizations/repository-defaults.md,rendering error
-translations/zh-CN/data/reusables/organizations/require-ssh-cert.md,broken liquid tags
 translations/zh-CN/data/reusables/organizations/security-and-analysis.md,rendering error
 translations/zh-CN/data/reusables/organizations/security.md,rendering error
 translations/zh-CN/data/reusables/organizations/teams_sidebar.md,rendering error
--- a/translations/zh-CN/content/actions/managing-issues-and-pull-requests/adding-labels-to-issues.md
+++ b/translations/zh-CN/content/actions/managing-issues-and-pull-requests/adding-labels-to-issues.md
@@ -1,6 +1,7 @@
 ---
-title: 向议题添加标签
-intro: '您可以使用 {% data variables.product.prodname_actions %} 自动标记议题。'
+title: Adding labels to issues
+shortTitle: Add labels to issues
+intro: 'You can use {% data variables.product.prodname_actions %} to automatically label issues.'
 redirect_from:
  - /actions/guides/adding-labels-to-issues
 versions:
@@ -12,32 +13,26 @@ type: tutorial
 topics:
  - Workflows
  - Project management
-ms.openlocfilehash: 8e80990a1a533ed303f47cbad8dafb95c890893d
-ms.sourcegitcommit: 5f9527483381cfb1e41f2322f67c80554750a47d
-ms.translationtype: HT
-ms.contentlocale: zh-CN
-ms.lasthandoff: 09/11/2022
-ms.locfileid: '147884307'
 ---
-{% data reusables.actions.enterprise-beta %} {% data reusables.actions.enterprise-github-hosted-runners %}

-## 简介
+{% data reusables.actions.enterprise-beta %}
+{% data reusables.actions.enterprise-github-hosted-runners %}

-本教程演示如何使用工作流中的 [`andymckay/labeler` 操作](https://github.com/marketplace/actions/simple-issue-labeler) 来标记新打开或重新打开的问题。 例如，每次打开或重新打开问题时，都可以添加 `triage` 标签。 然后，可通过筛选具有 `triage` 标签的问题来查看需要会审的问题。
+## Introduction

-在本教程中，你将首先创建一个使用 [`andymckay/labeler` 操作](https://github.com/marketplace/actions/simple-issue-labeler)的工作流文件。 然后，您将自定义工作流以适应您的需要。
+This tutorial demonstrates how to use the [`actions/github-script` action](https://github.com/marketplace/actions/github-script) in a workflow to label newly opened or reopened issues. For example, you can add the `triage` label every time an issue is opened or reopened. Then, you can see all issues that need to be triaged by filtering for issues with the `triage` label.

-## 创建工作流程
+The `actions/github-script` action allows you to easily use the {% data variables.product.prodname_dotcom %} API in a workflow.
+
+In the tutorial, you will first make a workflow file that uses the [`actions/github-script` action](https://github.com/marketplace/actions/github-script). Then, you will customize the workflow to suit your needs.
+
+## Creating the workflow

 1. {% data reusables.actions.choose-repo %}
 2. {% data reusables.actions.make-workflow-file %}
-3. 将以下 YAML 内容复制到工作流程文件中。
-
+3. Copy the following YAML contents into your workflow file.
+  
    ```yaml{:copy}
-{% indented_data_reference reusables.actions.actions-not-certified-by-github-comment spaces=4 %}
-
-{% indented_data_reference reusables.actions.actions-use-sha-pinning-comment spaces=4 %}
-
    name: Label issues
    on:
      issues:
@@ -50,29 +45,34 @@ ms.locfileid: '147884307'
        permissions:
          issues: write
        steps:
-          - name: Label issues
-            uses: andymckay/labeler@e6c4322d0397f3240f0e7e30a33b5c5df2d39e90
+          - uses: {% data reusables.actions.action-github-script %}
            with:
-              add-labels: "triage"
-              repo-token: {% raw %}${{ secrets.GITHUB_TOKEN }}{% endraw %}
+              script: |
+                github.rest.issues.addLabels({
+                  issue_number: context.issue.number,
+                  owner: context.repo.owner,
+                  repo: context.repo.repo,
+                  labels: ["triage"]
+                })
    ```

-4. 自定义工工作流程文件中的参数：
-   - 将 `add-labels` 的值更改为你想要添加到此问题的标签列表。 使用逗号分隔多个标签。 例如 `"help wanted, good first issue"`。 有关标签的详细信息，请参阅[管理标签](/github/managing-your-work-on-github/managing-labels#applying-labels-to-issues-and-pull-requests)。
+4. Customize the `script` parameter in your workflow file:
+   - The `issue_number`, `owner`, and `repo` values are automatically set using the `context` object. You do not need to change these.
+   - Change the value for `labels` to the list of labels that you want to add to the issue. Separate multiple labels with commas. For example, `["help wanted", "good first issue"]`. For more information about labels, see "[Managing labels](/github/managing-your-work-on-github/managing-labels#applying-labels-to-issues-and-pull-requests)."
 5. {% data reusables.actions.commit-workflow %}

-## 测试工作流程
+## Testing the workflow

-每次打开或重新打开仓库中的议题时，此工作流程将添加您指定给此议题的标签。
+Every time an issue in your repository is opened or reopened, this workflow will add the labels that you specified to the issue.

-通过在仓库中创建议题来测试工作流程。
+Test out your workflow by creating an issue in your repository.

-1. 在仓库中创建议题。 有关详细信息，请参阅[创建问题](/github/managing-your-work-on-github/creating-an-issue)。
-2. 要查看通过创建议题所触发的工作流程运行，请查看工作流程运行的历史记录。 有关详细信息，请参阅“[查看工作流运行历史记录](/actions/managing-workflow-runs/viewing-workflow-run-history)”。
-3. 当工作流程完成时，您创建的议题应已添加指定的标签。
+1. Create an issue in your repository. For more information, see "[Creating an issue](/github/managing-your-work-on-github/creating-an-issue)."
+2. To see the workflow run that was triggered by creating the issue, view the history of your workflow runs. For more information, see "[Viewing workflow run history](/actions/managing-workflow-runs/viewing-workflow-run-history)."
+3. When the workflow completes, the issue that you created should have the specified labels added.

-## 后续步骤
+## Next steps

- 若要详细了解可以使用 `andymckay/labeler` 操作执行的其他操作，例如删除标签或者在问题分配或具有特定标签时跳过此操作，请参阅 [`andymckay/labeler` 操作文档](https://github.com/marketplace/actions/simple-issue-labeler)。
- 若要详细了解可以触发工作流的不同事件，请参阅[可触发工作流的事件](/actions/reference/events-that-trigger-workflows#issues)。 `andymckay/labeler` 操作仅适用于 `issues`、`pull_request` 或 `project_card` 事件。
- [搜索 GitHub](https://github.com/search?q=%22uses:+andymckay/labeler%22&type=code) 以获取使用此操作的工作流示例。
+- To learn more about additional things you can do with the `actions/github-script` action, see the [`actions/github-script` action documentation](https://github.com/marketplace/actions/github-script).
+- To learn more about different events that can trigger your workflow, see "[Events that trigger workflows](/actions/reference/events-that-trigger-workflows#issues)."
+- [Search GitHub](https://github.com/search?q=%22uses:+actions/github-script%22&type=code) for examples of workflows using this action.
--- a/translations/zh-CN/content/actions/managing-issues-and-pull-requests/removing-a-label-when-a-card-is-added-to-a-project-board-column.md
+++ b/translations/zh-CN/content/actions/managing-issues-and-pull-requests/removing-a-label-when-a-card-is-added-to-a-project-board-column.md
@@ -1,6 +1,6 @@
 ---
-title: 将卡片添加到项目板列时删除标签
-intro: '您可以使用 {% data variables.product.prodname_actions %} 在议题或拉取请求添加到项目板上的特定列时自动删除标签。'
+title: Removing a label when a card is added to a project board column
+intro: 'You can use {% data variables.product.prodname_actions %} to automatically remove a label when an issue or pull request is added to a specific column on a {% data variables.projects.projects_v1_board %}.'
 redirect_from:
  - /actions/guides/removing-a-label-when-a-card-is-added-to-a-project-board-column
 versions:
@@ -13,74 +13,73 @@ topics:
  - Workflows
  - Project management
 shortTitle: Remove label when adding card
-ms.openlocfilehash: c23edb495719c7059c9c5d8dab1c29acb0e78cb6
-ms.sourcegitcommit: 47bd0e48c7dba1dde49baff60bc1eddc91ab10c5
-ms.translationtype: HT
-ms.contentlocale: zh-CN
-ms.lasthandoff: 09/05/2022
-ms.locfileid: '147410105'
 ---
-{% data reusables.actions.enterprise-beta %} {% data reusables.actions.enterprise-github-hosted-runners %}

-## 简介
+{% data reusables.actions.enterprise-beta %}
+{% data reusables.actions.enterprise-github-hosted-runners %}

-本教程演示如何使用 [`andymckay/labeler` 操作](https://github.com/marketplace/actions/simple-issue-labeler)和条件，从已添加到项目板上指定列的议题和拉取请求中删除标签。 例如，可以在项目卡移至 `Done` 列后删除 `needs review` 标签。
+## Introduction

-在本教程中，你将首先创建一个使用 [`andymckay/labeler` 操作](https://github.com/marketplace/actions/simple-issue-labeler)的工作流文件。 然后，您将自定义工作流以适应您的需要。
+This tutorial demonstrates how to use the [`actions/github-script` action](https://github.com/marketplace/actions/github-script) along with a conditional to remove a label from issues and pull requests that are added to a specific column on a {% data variables.projects.projects_v1_board %}. For example, you can remove the `needs review` label when project cards are moved into the `Done` column.

-## 创建工作流程
+In the tutorial, you will first make a workflow file that uses the [`actions/github-script` action](https://github.com/marketplace/actions/github-script). Then, you will customize the workflow to suit your needs.
+
+## Creating the workflow

 1. {% data reusables.actions.choose-repo %}
-2. 选择属于仓库的项目。 此工作流程不能用于属于用户或组织的项目。 您可以使用现有项目，也可以创建新项目。 有关如何创建项目的详细信息，请参阅“[创建项目板](/github/managing-your-work-on-github/creating-a-project-board)”。
+2. Choose a {% data variables.projects.projects_v1_board %} that belongs to the repository. This workflow cannot be used with projects that belong to users or organizations. You can use an existing {% data variables.projects.projects_v1_board %}, or you can create a new {% data variables.projects.projects_v1_board %}. For more information about creating a project, see "[Creating a {% data variables.product.prodname_project_v1 %}](/github/managing-your-work-on-github/creating-a-project-board)."
 3. {% data reusables.actions.make-workflow-file %}
-4. 将以下 YAML 内容复制到工作流程文件中。
+4. Copy the following YAML contents into your workflow file.
+
    ```yaml{:copy}
-{% indented_data_reference reusables.actions.actions-not-certified-by-github-comment spaces=4 %}
-
-{% indented_data_reference reusables.actions.actions-use-sha-pinning-comment spaces=4 %}
-
-    name: Remove labels
+    name: Remove a label
    on:
      project_card:
        types:
          - moved
    jobs:
-      remove_labels:
+      remove_label:
        if: github.event.project_card.column_id == '12345678'
        runs-on: ubuntu-latest
        permissions:
          issues: write
          pull-requests: write
        steps:
-          - name: remove labels
-            uses: andymckay/labeler@5c59dabdfd4dd5bd9c6e6d255b01b9d764af4414
+          - uses: {% data reusables.actions.action-github-script %}
            with:
-              remove-labels: "needs review"
-              repo-token: {% raw %}${{ secrets.GITHUB_TOKEN }}{% endraw %}
+              script: |
+                // this gets the number at the end of the content URL, which should be the issue/PR number
+                const issue_num = context.payload.project_card.content_url.split('/').pop()
+                github.rest.issues.removeLabel({
+                  issue_number: issue_num,
+                  owner: context.repo.owner,
+                  repo: context.repo.repo,
+                  name: ["needs review"]
+                })
    ```

-5. 自定义工工作流程文件中的参数：
-   - 在 `github.event.project_card.column_id == '12345678'` 中，将 `12345678` 替换为要取消标记移至其中的议题和拉取请求的列 ID。
+5. Customize the parameters in your workflow file:
+   - In `github.event.project_card.column_id == '12345678'`, replace `12345678` with the ID of the column where you want to un-label issues and pull requests that are moved there.

-    要查找列 ID，请导航到您的项目板。 在列标题旁边，请单击 {% octicon "kebab-horizontal" aria-label="The horizontal kebab icon" %}，然后单击“复制列链接”。 列 ID 是复制的链接末尾的数字。 例如，`24687531` 是 `https://github.com/octocat/octo-repo/projects/1#column-24687531` 的列 ID。
+     To find the column ID, navigate to your {% data variables.projects.projects_v1_board %}. Next to the title of the column, click {% octicon "kebab-horizontal" aria-label="The horizontal kebab icon" %} then click **Copy column link**. The column ID is the number at the end of the copied link. For example, `24687531` is the column ID for `https://github.com/octocat/octo-repo/projects/1#column-24687531`.

-     如果想要在多个列上操作，请使用 `||` 分隔条件。 例如，只要项目卡添加到了列 `12345678` 或列 `87654321`，就会使用 `if github.event.project_card.column_id == '12345678' || github.event.project_card.column_id == '87654321'`。 这些列可能在不同的项目板上。
-   - 将 `remove-labels` 的值更改为要从移至指定列的议题或拉取请求中删除的标签列表。 使用逗号分隔多个标签。 例如 `"help wanted, good first issue"`。 有关标签的详细信息，请参阅“[管理标签](/github/managing-your-work-on-github/managing-labels#applying-labels-to-issues-and-pull-requests)”。
+     If you want to act on more than one column, separate the conditions with `||`. For example, `if github.event.project_card.column_id == '12345678' || github.event.project_card.column_id == '87654321'` will act whenever a project card is added to column `12345678` or column `87654321`. The columns may be on different project boards.
+   - Change the value for `name` in the `github.rest.issues.removeLabel()` function to the name of the label that you want to remove from issues or pull requests that are moved to the specified column(s). For more information on labels, see "[Managing labels](/github/managing-your-work-on-github/managing-labels#applying-labels-to-issues-and-pull-requests)."
 6. {% data reusables.actions.commit-workflow %}

-## 测试工作流程
+## Testing the workflow

-每次仓库中项目上的项目卡移动时，此工作流程都会运行。 如果卡是议题或拉取请求，并移入您指定的列，则工作流程将从问题或拉取请求中删除指定的标签。 记事卡不会受到影响。
+Every time a project card on a {% data variables.projects.projects_v1_board %} in your repository moves, this workflow will run. If the card is an issue or a pull request and is moved into the column that you specified, then the workflow will remove the specified label from the issue or a pull request. Cards that are notes will not be affected.

-通过将项目上的议题移到目标列中来测试工作流程。
+Test your workflow out by moving an issue on your {% data variables.projects.projects_v1_board %} into the target column.

-1. 在仓库中打开一个议题。 有关详细信息，请参阅“[创建议题](/github/managing-your-work-on-github/creating-an-issue)”。
-2. 用标签标记您想要工作流程删除的议题。 有关详细信息，请参阅“[管理标签](/github/managing-your-work-on-github/managing-labels#applying-labels-to-issues-and-pull-requests)”。
-3. 将议题添加到您在工作流程文件中指定的项目列。 有关详细信息，请参阅“[向项目板添加议题和拉取请求](/github/managing-your-work-on-github/adding-issues-and-pull-requests-to-a-project-board)”。
-4. 要查看通过将议题添加到项目所触发的工作流程运行，请查看工作流程运行的历史记录。 有关详细信息，请参阅“[查看工作流运行历史记录](/actions/managing-workflow-runs/viewing-workflow-run-history)”。
-5. 当工作流程完成时，您添加到项目列的议题应已删除指定的标签。
+1. Open an issue in your repository. For more information, see "[Creating an issue](/github/managing-your-work-on-github/creating-an-issue)."
+2. Label the issue with the label that you want the workflow to remove. For more information, see "[Managing labels](/github/managing-your-work-on-github/managing-labels#applying-labels-to-issues-and-pull-requests)."
+3. Add the issue to the {% data variables.projects.projects_v1_board %} column that you specified in your workflow file. For more information, see "[Adding issues and pull requests to a {% data variables.product.prodname_project_v1 %}](/github/managing-your-work-on-github/adding-issues-and-pull-requests-to-a-project-board)."
+4. To see the workflow run that was triggered by adding the issue to the project, view the history of your workflow runs. For more information, see "[Viewing workflow run history](/actions/managing-workflow-runs/viewing-workflow-run-history)."
+5. When the workflow completes, the issue that you added to the project column should have the specified label removed.

-## 后续步骤
+## Next steps

- 若要详细了解可以使用 `andymckay/labeler` 操作执行的其他操作，例如添加标签或者在议题分配或具有特定标签时跳过此操作，请访问 [`andymckay/labeler` 操作文档](https://github.com/marketplace/actions/simple-issue-labeler)。
- [搜索 GitHub](https://github.com/search?q=%22uses:+andymckay/labeler%22&type=code) 以获取使用此操作的工作流示例。
+- To learn more about additional things you can do with the `actions/github-script` action, see the [`actions/github-script` action documentation](https://github.com/marketplace/actions/github-script).
+- [Search GitHub](https://github.com/search?q=%22uses:+actions/github-script%22&type=code) for examples of workflows using this action.
--- a/translations/zh-CN/content/admin/configuration/configuring-your-enterprise/restricting-network-traffic-to-your-enterprise-with-an-ip-allow-list.md
+++ b/translations/zh-CN/content/admin/configuration/configuring-your-enterprise/restricting-network-traffic-to-your-enterprise-with-an-ip-allow-list.md
@@ -17,12 +17,12 @@ topics:
 redirect_from:
  - /admin/configuration/restricting-network-traffic-to-your-enterprise
  - /admin/configuration/configuring-your-enterprise/restricting-network-traffic-to-your-enterprise
-ms.openlocfilehash: d9a4518f2fcc23d4b49967effb7b9a3022a7c6bd
-ms.sourcegitcommit: 7a74d5796695bb21c30e4031679253cbc16ceaea
+ms.openlocfilehash: b62ab2a143ed0e7ec57f7e7225a09c0ca713295c
+ms.sourcegitcommit: 7fb7ec2e665856fc5f7cd209b53bd0fb1c9bbc67
 ms.translationtype: HT
 ms.contentlocale: zh-CN
-ms.lasthandoff: 11/28/2022
-ms.locfileid: '148184010'
+ms.lasthandoff: 11/29/2022
+ms.locfileid: '148185041'
 ---
 ## 关于网络流量限制

@@ -115,7 +115,7 @@ OIDC CAP 仅适用于使用用户到服务器令牌对 API 的请求，例如 {%
 1. 在“IP 允许列表”下，选择下拉列表并单击“标识提供者”。

   ![显示三个 IP 允许列表配置选项“已禁用”、“标识提供者”和“GitHub”的下拉菜单的屏幕截图](/assets/images/help/security/enable-identity-provider-ip-allow-list.png)
-   - （可选）若要允许已安装的 {% data variables.product.company_short %} 和 {% data variables.product.prodname_oauth_apps %} 从任意 IP 地址访问你的企业，请选择“为应用程序跳过 IdP 检查”。
+1. （可选）若要允许已安装的 {% data variables.product.company_short %} 和 {% data variables.product.prodname_oauth_apps %} 从任意 IP 地址访问你的企业，请选择“为应用程序跳过 IdP 检查”。

   ![允许 IP 地址的复选框](/assets/images/help/security/ip-allow-list-skip-idp-check.png)
 1. 单击“ **保存**”。
--- a/translations/zh-CN/content/admin/enterprise-management/updating-the-virtual-machine-and-physical-resources/upgrading-github-enterprise-server.md
+++ b/translations/zh-CN/content/admin/enterprise-management/updating-the-virtual-machine-and-physical-resources/upgrading-github-enterprise-server.md
@@ -236,6 +236,7 @@ Appliances configured for high-availability and geo-replication use replica inst

   - If you have upgraded each node to {% data variables.product.product_name %} 3.6.0 or later and started replication, but `git replication is behind the primary` continues to appear after 45 minutes, contact {% data variables.contact.enterprise_support %}. For more information, see "[Receiving help from {% data variables.contact.github_support %}](/admin/enterprise-support/receiving-help-from-github-support)."
   {%- endif %}
+
   - {% ifversion ghes = 3.4 or ghes = 3.5 or ghes = 3.6 %}Otherwise, if{% else %}If{% endif %} `ghe-repl-status` did not return `OK`, contact {% data variables.contact.enterprise_support %}. For more information, see "[Receiving help from {% data variables.contact.github_support %}](/admin/enterprise-support/receiving-help-from-github-support)."
 6. When you have completed upgrading the last replica, and the resync is complete, disable maintenance mode so users can use {% data variables.location.product_location %}.

--- a/translations/zh-CN/content/admin/identity-and-access-management/using-saml-for-enterprise-iam/configuring-saml-single-sign-on-for-your-enterprise.md
+++ b/translations/zh-CN/content/admin/identity-and-access-management/using-saml-for-enterprise-iam/configuring-saml-single-sign-on-for-your-enterprise.md
@@ -1,7 +1,7 @@
 ---
-title: Configuring SAML single sign-on for your enterprise
+title: 为企业配置 SAML 单点登录
 shortTitle: Configure SAML SSO
-intro: 'You can control and secure access to {% ifversion ghec %}resources like repositories, issues, and pull requests within your enterprise''s organizations{% elsif ghes %}{% data variables.location.product_location %}{% elsif ghae %}your enterprise on {% data variables.product.prodname_ghe_managed %}{% endif %} by {% ifversion ghec %}enforcing{% elsif ghes or ghae %}configuring{% endif %} SAML single sign-on (SSO) through your identity provider (IdP).'
+intro: '你可以通过{% ifversion ghec %}强制执行{% elsif ghes or ghae %}配置{% endif %}通过身份提供商 (IdP) 的 SAML 单一登录 (SSO)，控制和保护对{% ifversion ghec %}资源（如企业组织中的存储库、问题和拉取请求）{% elsif ghes %}{% data variables.location.product_location %}{% elsif ghae %}你在 {% data variables.product.prodname_ghe_managed %} 上的企业{% endif %}的访问。'
 permissions: '{% ifversion ghes %}Site administrators{% elsif ghec or ghae %}Enterprise owners{% endif %} can configure SAML SSO for {% ifversion ghec or ghae %}an enterprise on {% data variables.product.product_name %}{% elsif ghes %}a {% data variables.product.product_name %} instance{% endif %}.'
 versions:
  ghec: '*'
@@ -21,11 +21,16 @@ redirect_from:
  - /github/setting-up-and-managing-your-enterprise/configuring-identity-and-access-management-for-your-enterprise-account/enforcing-saml-single-sign-on-for-organizations-in-your-enterprise-account
  - /admin/authentication/managing-identity-and-access-for-your-enterprise/configuring-saml-single-sign-on-for-your-enterprise
  - /admin/identity-and-access-management/managing-iam-for-your-enterprise/configuring-saml-single-sign-on-for-your-enterprise
+ms.openlocfilehash: 804ba3b262aae15b862e1a14694b82339c8d34a4
+ms.sourcegitcommit: 7a74d5796695bb21c30e4031679253cbc16ceaea
+ms.translationtype: HT
+ms.contentlocale: zh-CN
+ms.lasthandoff: 11/28/2022
+ms.locfileid: '148183954'
 ---
-
 {% data reusables.enterprise-accounts.emu-saml-note %}

-## About SAML SSO
+## 关于 SAML SSO

 {% ifversion ghec %}

@@ -33,11 +38,11 @@ redirect_from:

 {% data reusables.saml.saml-accounts %}

-For more information, see "[About identity and access management with SAML single sign-on](/organizations/managing-saml-single-sign-on-for-your-organization/about-identity-and-access-management-with-saml-single-sign-on)."
+有关详细信息，请参阅[关于使用 SAML 单一登录进行标识和访问管理](/organizations/managing-saml-single-sign-on-for-your-organization/about-identity-and-access-management-with-saml-single-sign-on)。

 {% data reusables.saml.about-saml-enterprise-accounts %}

-{% data reusables.saml.about-saml-access-enterprise-account %} For more information, see "[Viewing and managing a user's SAML access to your enterprise account](/admin/user-management/managing-users-in-your-enterprise/viewing-and-managing-a-users-saml-access-to-your-enterprise)."
+{% data reusables.saml.about-saml-access-enterprise-account %}有关详细信息，请参阅“[查看和管理用户对企业帐户 SAML 的访问](/admin/user-management/managing-users-in-your-enterprise/viewing-and-managing-a-users-saml-access-to-your-enterprise)”。

 {% data reusables.saml.saml-disabled-linked-identities-removed %}

@@ -45,9 +50,9 @@ For more information, see "[About identity and access management with SAML singl

 {% elsif ghes or ghae %}

-SAML SSO allows you to centrally control and secure access to {% data variables.location.product_location %} from your SAML IdP. When an unauthenticated user visits {% data variables.location.product_location %} in a browser, {% data variables.product.product_name %} will redirect the user to your SAML IdP to authenticate. After the user successfully authenticates with an account on the IdP, the IdP redirects the user back to {% data variables.location.product_location %}. {% data variables.product.product_name %} validates the response from your IdP, then grants access to the user.
+SAML SSO 允许你从 SAML IdP 集中控制和安全访问 {% data variables.location.product_location %}。 当未经身份验证的用户在浏览器中访问 {% data variables.location.product_location %} 时，{% data variables.product.product_name %} 会将用户重定向到你的 SAML IdP 进行身份验证。 在用户使用 IdP 上的帐户成功进行身份验证后，IdP 会将用户重定向回 {% data variables.location.product_location %}。 {% data variables.product.product_name %} 将验证 IdP 的响应，然后授予用户访问权限。

-After a user successfully authenticates on your IdP, the user's SAML session for {% data variables.location.product_location %} is active in the browser for 24 hours. After 24 hours, the user must authenticate again with your IdP.
+当用户在 IdP 上成功进行身份验证后，用户对 {% data variables.location.product_location %} 的 SAML 会话将在浏览器中激活 24 小时。 24 小时后，用户必须再次使用您的 IdP 进行身份验证。

 {% data reusables.saml.saml-ghes-account-revocation %}

@@ -55,171 +60,161 @@ After a user successfully authenticates on your IdP, the user's SAML session for

 {% data reusables.saml.assert-the-administrator-attribute %}

-{% data reusables.scim.after-you-configure-saml %} For more information, see "[Configuring user provisioning for your enterprise](/admin/authentication/configuring-user-provisioning-for-your-enterprise)."
+{% data reusables.scim.after-you-configure-saml %} 有关详细信息，请参阅[配置企业的用户预配](/admin/authentication/configuring-user-provisioning-for-your-enterprise)。

 {% endif %}

 {% endif %}

-## Supported identity providers
+## 支持的身份提供程序

 {% data reusables.saml.saml-supported-idps %}

 {% ifversion ghec %}

-## Username considerations with SAML
+## 使用 SAML 时的用户名考量因素

-{% ifversion ghec %}If you use {% data variables.product.prodname_emus %}, {% endif %}{% data reusables.enterprise_user_management.consider-usernames-for-external-authentication %} For more information, see "[Username considerations for external authentication](/admin/identity-and-access-management/managing-iam-for-your-enterprise/username-considerations-for-external-authentication)."
+{% ifversion ghec %}如果使用 {% data variables.product.prodname_emus %}，{% endif %}{% data reusables.enterprise_user_management.consider-usernames-for-external-authentication %} 有关详细信息，请参阅“[外部身份验证的用户名注意事项](/admin/identity-and-access-management/managing-iam-for-your-enterprise/username-considerations-for-external-authentication)”。

-## Enforcing SAML single-sign on for organizations in your enterprise account
+## 为企业帐户中的组织强制实施 SAML 单一登录

-When you enforce SAML SSO for your enterprise, the enterprise configuration will override any existing organization-level SAML configurations. {% data reusables.saml.switching-from-org-to-enterprise %} For more information, see "[Switching your SAML configuration from an organization to an enterprise account](/github/setting-up-and-managing-your-enterprise/configuring-identity-and-access-management-for-your-enterprise-account/switching-your-saml-configuration-from-an-organization-to-an-enterprise-account)."
+为您的企业实施 SAML SSO 时，企业配置将覆盖任何现有的组织级 SAML 配置。 {% data reusables.saml.switching-from-org-to-enterprise %} 有关详细信息，请参阅“[将 SAML 配置从组织切换为企业帐户](/github/setting-up-and-managing-your-enterprise/configuring-identity-and-access-management-for-your-enterprise-account/switching-your-saml-configuration-from-an-organization-to-an-enterprise-account)”。

-When you enforce SAML SSO for an organization, {% data variables.product.company_short %} removes any members of the organization that have not authenticated successfully with your SAML IdP. When you require SAML SSO for your enterprise, {% data variables.product.company_short %} does not remove members of the enterprise that have not authenticated successfully with your SAML IdP. The next time a member accesses the enterprise's resources, the member must authenticate with your SAML IdP.
+当你为组织强制实施 SAML SSO 时，{% data variables.product.company_short %} 会删除未通过 SAML IdP 成功进行身份验证的任何组织成员。 当为企业强制实施 SAML SSO 时，{% data variables.product.company_short %} 不会删除未通过 SAML IdP 成功进行身份验证的企业成员。 下一次当某个成员访问企业资源时，该成员必须使用 SAML IdP 进行身份验证。

-For more detailed information about how to enable SAML using Okta, see "[Configuring SAML single sign-on for your enterprise account using Okta](/admin/authentication/managing-identity-and-access-for-your-enterprise/configuring-saml-single-sign-on-for-your-enterprise-using-okta)."
+有关如何使用 Okta 启用 SAML 的详细信息，请参阅“[使用 Okta 为企业帐户配置 SAML 单一登录](/admin/authentication/managing-identity-and-access-for-your-enterprise/configuring-saml-single-sign-on-for-your-enterprise-using-okta)”。

-{% data reusables.enterprise-accounts.access-enterprise %}
-{% data reusables.enterprise-accounts.settings-tab %}
-{% data reusables.enterprise-accounts.security-tab %}
+{% data reusables.enterprise-accounts.access-enterprise %} {% data reusables.enterprise-accounts.settings-tab %} {% data reusables.enterprise-accounts.security-tab %}
 4. {% data reusables.enterprise-accounts.view-current-policy-config-orgs %}
-5. Under "SAML single sign-on", select **Require SAML authentication**.
-  ![Checkbox for enabling SAML SSO](/assets/images/help/business-accounts/enable-saml-auth-enterprise.png)
-6. In the **Sign on URL** field, type the HTTPS endpoint of your IdP for single sign-on requests. This value is available in your IdP configuration.
-![Field for the URL that members will be forwarded to when signing in](/assets/images/help/saml/saml_sign_on_url_business.png)
-7. Optionally, in the **Issuer** field, type your SAML issuer URL to verify the authenticity of sent messages.
-![Field for the SAML issuer's name](/assets/images/help/saml/saml_issuer.png)
-8. Under **Public Certificate**, paste a certificate to verify SAML responses.
-![Field for the public certificate from your identity provider](/assets/images/help/saml/saml_public_certificate.png)
-9. To verify the integrity of the requests from your SAML issuer, click {% octicon "pencil" aria-label="The edit icon" %}. Then in the "Signature Method" and "Digest Method" drop-downs, choose the hashing algorithm used by your SAML issuer.
-![Drop-downs for the Signature Method and Digest method hashing algorithms used by your SAML issuer](/assets/images/help/saml/saml_hashing_method.png)
-10. Before enabling SAML SSO for your enterprise, click **Test SAML configuration** to ensure that the information you've entered is correct. ![Button to test SAML configuration before enforcing](/assets/images/help/saml/saml_test.png)
-11. Click **Save**.
+5. 在“SAML 单一登录”下，选择“要求 SAML 身份验证”。
+  ![用于启用 SAML SSO 的复选框](/assets/images/help/business-accounts/enable-saml-auth-enterprise.png)
+6. 在“登录 URL”字段中，为单一登录请求键入 IdP 的 HTTPS 终结点。 此值可在 IdP 配置中找到。
+![登录时将成员转发到的 URL 字段](/assets/images/help/saml/saml_sign_on_url_business.png)
+7. （可选）在“颁发者”字段中，键入 SAML 颁发者 URL 以验证已发送消息的真实性。
+![SAML 颁发者的姓名字段](/assets/images/help/saml/saml_issuer.png)
+8. 在“公共证书”下，粘贴证书以验证 SAML 响应。
+![标识提供程序的公共证书字段](/assets/images/help/saml/saml_public_certificate.png)
+9. 若要验证来自 SAML 颁发者的请求完整性，请单击 {% octicon "pencil" aria-label="The edit icon" %}。 然后，在“Signature Method（签名方法）”和“Digest Method（摘要方法）”下拉菜单中，选择 SAML 签发者使用的哈希算法。
+![SAML 颁发者使用的签名方法和摘要方法哈希算法下拉列表](/assets/images/help/saml/saml_hashing_method.png)
+10. 在为企业启用 SAML SSO 之前，请单击“测试 SMAL 配置”，以确保已输入的信息正确。 ![实施前测试 SAML 配置的按钮](/assets/images/help/saml/saml_test.png)
+11. 单击“ **保存**”。
 {% data reusables.enterprise-accounts.download-recovery-codes %}

 {% elsif ghes %}

-## Configuring SAML SSO
+## 配置 SAML SSO

-You can enable or disable SAML authentication for {% data variables.location.product_location %}, or you can edit an existing configuration. You can view and edit authentication settings for {% data variables.product.product_name %} in the management console. For more information, see "[Accessing the management console](/admin/configuration/configuring-your-enterprise/accessing-the-management-console)."
+可以为 {% data variables.location.product_location %} 启用或禁用 SAML 身份验证，也可以编辑现有配置。 可以在管理控制台中查看和编辑 {% data variables.product.product_name %} 的身份验证设置。 有关详细信息，请参阅“[访问管理控制台](/admin/configuration/configuring-your-enterprise/accessing-the-management-console)”。

 {% note %}

-**Note**: {% data reusables.enterprise.test-in-staging %}
+注意：{% data reusables.enterprise.test-in-staging %}

 {% endnote %}

-{% data reusables.enterprise_site_admin_settings.access-settings %}
-{% data reusables.enterprise_site_admin_settings.management-console %}
-{% data reusables.enterprise_management_console.authentication %}
-1. Select **SAML**.
+{% data reusables.enterprise_site_admin_settings.access-settings %} {% data reusables.enterprise_site_admin_settings.management-console %} {% data reusables.enterprise_management_console.authentication %}
+1. 选择“SAML”。
   
-   ![Screenshot of option to enable SAML authentication in management console](/assets/images/enterprise/management-console/auth-select-saml.png)
+   ![在管理控制台中启用 SAML 身份验证的选项的屏幕截图](/assets/images/enterprise/management-console/auth-select-saml.png)
 1. {% data reusables.enterprise_user_management.built-in-authentication-option %}

-   ![Screenshot of option to enable built-in authentication outside of SAML IdP](/assets/images/enterprise/management-console/saml-built-in-authentication.png)
-1. Optionally, to enable unsolicited response SSO, select **IdP initiated SSO**. By default, {% data variables.product.prodname_ghe_server %} will reply to an unsolicited Identity Provider (IdP) initiated request with an `AuthnRequest` back to the IdP.
+   ![在 SAML IdP 外部启用内置身份验证的选项的屏幕截图](/assets/images/enterprise/management-console/saml-built-in-authentication.png)
+1. （可选）若要启用未经请求的响应 SSO，请选择“IdP 发起的 SSO”。 默认情况下，{% data variables.product.prodname_ghe_server %} 将对未经请求的标识提供者 (IdP) 发起的请求进行回复，并向 IdP 返回一个 `AuthnRequest`。

-   ![Screenshot of option to enable IdP-initiated unsolicited response](/assets/images/enterprise/management-console/saml-idp-sso.png)
+   ![启用 IdP 发起的未经请求响应的选项的屏幕截图](/assets/images/enterprise/management-console/saml-idp-sso.png)

   {% tip %}

-   **Note**: We recommend keeping this value **unselected**. You should enable this feature **only** in the rare instance that your SAML implementation does not support service provider initiated SSO, and when advised by {% data variables.contact.enterprise_support %}.
+   注意：建议将此值保持未选中状态。 应仅在罕见情况下才启用此功能，即 SAML 实现不支持服务提供程序发起的 SSO，并且 {% data variables.contact.enterprise_support %} 建议执行此操作。

   {% endtip %}

-1. Select **Disable administrator demotion/promotion** if you **do not** want your SAML provider to determine administrator rights for users on {% data variables.location.product_location %}.
+1. 如果你不希望 SAML 提供程序为 {% data variables.location.product_location %} 上的用户确定管理员权限，请选择“禁用管理员降级/升级” 。

-   ![Screenshot of option to enable option to respect the "administrator" attribute from the IdP to enable or disable administrative rights](/assets/images/enterprise/management-console/disable-admin-demotion-promotion.png)
-{%- ifversion ghes > 3.3 %}
-1. Optionally, to allow {% data variables.location.product_location %} to receive encrypted assertions from your SAML IdP, select **Require encrypted assertions**. You must ensure that your IdP supports encrypted assertions and that the encryption and key transport methods in the management console match the values configured on your IdP. You must also provide {% data variables.location.product_location %}'s public certificate to your IdP. For more information, see "[Enabling encrypted assertions](/admin/identity-and-access-management/using-saml-for-enterprise-iam/enabling-encrypted-assertions)."
+   ![用于启用选项以遵从 IdP 的“管理员”属性，从而启用或禁用管理权限的选项的屏幕截图](/assets/images/enterprise/management-console/disable-admin-demotion-promotion.png) {%- ifversion ghes > 3.3 %}
+1. （可选）若要允许 {% data variables.location.product_location %} 从 SAML IdP 接收加密断言，请选择“需要加密断言”。 必须确保 IdP 支持加密断言，并且管理控制台中的加密和密钥传输方法与 IdP 上配置的值相匹配。 还必须向 IdP 提供 {% data variables.location.product_location %} 的公共证书。 有关详细信息，请参阅“[启用加密断言](/admin/identity-and-access-management/using-saml-for-enterprise-iam/enabling-encrypted-assertions)”。

-   ![Screenshot of "Enable encrypted assertions" checkbox within management console's "Authentication" section](/assets/images/help/saml/management-console-enable-encrypted-assertions.png)
-{%- endif %}
-1. In the **Single sign-on URL** field, type the HTTP or HTTPS endpoint on your IdP for single sign-on requests. This value is provided by your IdP configuration. If the host is only available from your internal network, you may need to [configure {% data variables.location.product_location %} to use internal nameservers](/enterprise/admin/guides/installation/configuring-dns-nameservers/).
+   ![管理控制台“身份验证”部分中“启用加密断言”复选框的屏幕截图](/assets/images/help/saml/management-console-enable-encrypted-assertions.png) {%- endif %}
+1. 在“单一登录 URL”字段中，输入 IdP 上用于单一登录请求的 HTTP 或 HTTPS 终结点。 此值由您的 IdP 配置提供。 如果主机只能在内部网络中使用，则可能需要[配置 {% data variables.location.product_location %} 以使用内部名称服务器](/enterprise/admin/guides/installation/configuring-dns-nameservers/)。

-   ![Screenshot of text field for single sign-on URL](/assets/images/enterprise/management-console/saml-single-sign-url.png)
-1. Optionally, in the **Issuer** field, type your SAML issuer's name. This verifies the authenticity of messages sent to {% data variables.location.product_location %}.
+   ![单一登录 URL 的文本字段的屏幕截图](/assets/images/enterprise/management-console/saml-single-sign-url.png)
+1. （可选）在“颁发者”字段中，键入 SAML 颁发者的名称。 这将验证发送到 {% data variables.location.product_location %} 的消息的真实性。

-   ![Screenshot of text field for SAML issuer URL](/assets/images/enterprise/management-console/saml-issuer.png)
-1. In the **Signature Method** and **Digest Method** drop-down menus, choose the hashing algorithm used by your SAML issuer to verify the integrity of the requests from {% data variables.location.product_location %}. Specify the format with the **Name Identifier Format** drop-down menu.
+   ![SAML 颁发者 URL 的文本字段的屏幕截图](/assets/images/enterprise/management-console/saml-issuer.png)
+1. 在“签名方法”和“摘要方法”下拉菜单中，选择 SAML 颁发者用来验证来自 {% data variables.location.product_location %} 的请求完整性的哈希算法 。 使用“名称标识符格式”下拉菜单指定格式。

-   ![Screenshot of drop-down menus to select signature and digest method](/assets/images/enterprise/management-console/saml-method.png)
-1. Under **Verification certificate**, click **Choose File** and choose a certificate to validate SAML responses from the IdP.
+   ![用于选择签名和摘要方法的下拉菜单的屏幕截图](/assets/images/enterprise/management-console/saml-method.png)
+1. 在“验证证书”下，单击“选择文件”并选择一个证书以验证来自 IdP 的 SAML 响应 。

-   ![Screenshot of button for uploading validation certificate from IdP](/assets/images/enterprise/management-console/saml-verification-cert.png)
-1. Modify the SAML attribute names to match your IdP if needed, or accept the default names.
+   ![用于从 IdP 上传验证证书的按钮的屏幕截图](/assets/images/enterprise/management-console/saml-verification-cert.png)
+1. 如果需要，请修改 SAML 属性名称以匹配您的 IdP，或者接受默认名称。

-   ![Screenshot of fields for entering additional SAML attributes](/assets/images/enterprise/management-console/saml-attributes.png)
+   ![用于输入其他 SAML 属性的字段的屏幕截图](/assets/images/enterprise/management-console/saml-attributes.png)

 {% elsif ghae %}

-## Enabling SAML SSO
+## 启用 SAML SSO

 {% data reusables.saml.ae-enable-saml-sso-during-bootstrapping %}

-The following IdPs provide documentation about configuring SAML SSO for {% data variables.product.product_name %}. If your IdP isn't listed, please contact your IdP to request support for {% data variables.product.product_name %}.
+以下 IdP 提供有关为 {% data variables.product.product_name %} 配置 SAML SSO 的文档。 如果您的 IdP 未列出，请与您的 IdP 联系，以请求 {% data variables.product.product_name %}。

- | IdP | More information |
+ | IdP | 详细信息 |
 | :- | :- |
- | Azure AD | "[Configuring authentication and provisioning for your enterprise using Azure AD](/admin/authentication/configuring-authentication-and-provisioning-with-your-identity-provider/configuring-authentication-and-provisioning-for-your-enterprise-using-azure-ad)" |
-| Okta | "[Configuring authentication and provisioning for your enterprise using Okta](/admin/authentication/configuring-authentication-and-provisioning-with-your-identity-provider/configuring-authentication-and-provisioning-for-your-enterprise-using-okta)" |
+ | Azure AD | “[使用 Azure AD 为企业配置身份验证和预置](/admin/authentication/configuring-authentication-and-provisioning-with-your-identity-provider/configuring-authentication-and-provisioning-for-your-enterprise-using-azure-ad)” |
+| Okta | “[使用 Okta 为企业配置身份验证和预配](/admin/authentication/configuring-authentication-and-provisioning-with-your-identity-provider/configuring-authentication-and-provisioning-for-your-enterprise-using-okta)” |

-During initialization for {% data variables.product.product_name %}, you must configure {% data variables.product.product_name %} as a SAML service provider (SP) on your IdP. You must enter several unique values on your IdP to configure {% data variables.product.product_name %} as a valid SP. For more information, see "[SAML configuration reference](/admin/identity-and-access-management/using-saml-for-enterprise-iam/saml-configuration-reference#saml-metadata)."
+在 {% data variables.product.product_name %} 的初始化期间，必须在 IdP 上将 {% data variables.product.product_name %} 配置为 SAML 服务提供程序 (SP)。 您必须在 IdP 上输入多个唯一值以将 {% data variables.product.product_name %} 配置为有效的 SP。 有关详细信息，请参阅“[SAML 配置参考](/admin/identity-and-access-management/using-saml-for-enterprise-iam/saml-configuration-reference#saml-metadata)”。

-## Editing the SAML SSO configuration
+## 编辑 SAML SSO 配置

-If the details for your IdP change, you'll need to edit the SAML SSO configuration for {% data variables.location.product_location %}. For example, if the certificate for your IdP expires, you can edit the value for the public certificate.
+如果 IdP 的详细信息发生更改，则需要编辑 {% data variables.location.product_location %} 的 SAML SSO 配置。 例如，如果 IdP 的证书过期，您可以编辑公共证书的值。

 {% ifversion ghae %}

 {% note %}

-**Note**: {% data reusables.saml.contact-support-if-your-idp-is-unavailable %}
+注意：{% data reusables.saml.contact-support-if-your-idp-is-unavailable %}

 {% endnote %} 

-{% data reusables.enterprise-accounts.access-enterprise %}
-{% data reusables.enterprise-accounts.settings-tab %}
-{% data reusables.enterprise-accounts.security-tab %}
-1. Under "SAML single sign-on", type the new details for your IdP.
-  ![Text entry fields with IdP details for SAML SSO configuration for an enterprise](/assets/images/help/saml/ae-edit-idp-details.png)
-1. Optionally, click {% octicon "pencil" aria-label="The edit icon" %} to configure a new signature or digest method.
-  ![Edit icon for changing signature and digest method](/assets/images/help/saml/ae-edit-idp-details-edit-signature-and-digest.png)
+{% data reusables.enterprise-accounts.access-enterprise %} {% data reusables.enterprise-accounts.settings-tab %} {% data reusables.enterprise-accounts.security-tab %}
+1. 在“SAML single sign-on（SAML 单点登录）”下，键入 IdP 的新详细信息。
+  ![具有 IdP 详细信息的文本输入字段，用于企业 SAML SSO 配置](/assets/images/help/saml/ae-edit-idp-details.png)
+1. （可选）单击 {% octicon "pencil" aria-label="The edit icon" %} 以配置新的签名或摘要方法。
+  ![用于更改签名和摘要方法的编辑图标](/assets/images/help/saml/ae-edit-idp-details-edit-signature-and-digest.png)

-    - Use the drop-down menus and choose the new signature or digest method.
-      ![Drop-down menus for choosing a new signature or digest method](/assets/images/help/saml/ae-edit-idp-details-edit-signature-and-digest-drop-down-menus.png)
-1. To ensure that the information you've entered is correct, click **Test SAML configuration**.
-  !["Test SAML configuration" button](/assets/images/help/saml/ae-edit-idp-details-test-saml-configuration.png)
-1. Click **Save**.
-    !["Save" button for SAML SSO configuration](/assets/images/help/saml/ae-edit-idp-details-save.png)
-1. Optionally, to automatically provision and deprovision user accounts for {% data variables.location.product_location %}, reconfigure user provisioning with SCIM. For more information, see "[Configuring user provisioning for your enterprise](/admin/authentication/configuring-user-provisioning-for-your-enterprise)."
+    - 使用下拉菜单并选择新的签名或摘要方法。
+      ![用于选择新签名或摘要方法的下拉菜单](/assets/images/help/saml/ae-edit-idp-details-edit-signature-and-digest-drop-down-menus.png)
+1. 要确保输入的信息是正确的，请单击“测试 SAML 配置”。
+  ![“测试 SAML 配置”按钮](/assets/images/help/saml/ae-edit-idp-details-test-saml-configuration.png)
+1. 单击“ **保存**”。
+    ![SAML SSO 配置的“保存”按钮](/assets/images/help/saml/ae-edit-idp-details-save.png)
+1. （可选）要自动预配和取消预配 {% data variables.location.product_location %} 的用户帐户，请使用 SCIM 重新配置用户预配。 有关详细信息，请参阅“[为企业配置用户预配](/admin/authentication/configuring-user-provisioning-for-your-enterprise)”。

 {% endif %}

 {% ifversion ghae %}

-## Disabling SAML SSO
+## 禁用 SAML SSO

 {% warning %}

-**Warning**: If you disable SAML SSO for {% data variables.location.product_location %}, users without existing SAML SSO sessions cannot sign into {% data variables.location.product_location %}. SAML SSO sessions on {% data variables.location.product_location %} end after 24 hours.
+警告：如果禁用 {% data variables.location.product_location %} 的 SAML SSO，没有现有 SAML SSO 会话的用户不能登录 {% data variables.location.product_location %}。 {% data variables.location.product_location %} 上的 SAML SSO 会话在 24 小时后结束。

 {% endwarning %}

 {% note %}

-**Note**: {% data reusables.saml.contact-support-if-your-idp-is-unavailable %}
+注意：{% data reusables.saml.contact-support-if-your-idp-is-unavailable %}

 {% endnote %}

-{% data reusables.enterprise-accounts.access-enterprise %}
-{% data reusables.enterprise-accounts.settings-tab %}
-{% data reusables.enterprise-accounts.security-tab %}
-1. Under "SAML single sign-on", unselect **Enable SAML authentication**.
-  ![Checkbox for "Enable SAML authentication"](/assets/images/help/saml/ae-saml-disabled.png)
-1. To disable SAML SSO and require signing in with the built-in user account you created during initialization, click **Save**.
-    !["Save" button for SAML SSO configuration](/assets/images/help/saml/ae-saml-disabled-save.png)
+{% data reusables.enterprise-accounts.access-enterprise %} {% data reusables.enterprise-accounts.settings-tab %} {% data reusables.enterprise-accounts.security-tab %}
+1. 在“SAML 单一登录”下，取消选择“启用 SAML 身份验证”。
+  ![“启用 SAML 身份验证”的复选框](/assets/images/help/saml/ae-saml-disabled.png)
+1. 若要禁用 SAML SSO 并要求使用在初始化期间创建的内置用户帐户进行登录，请单击“保存”。
+    ![SAML SSO 配置的“保存”按钮](/assets/images/help/saml/ae-saml-disabled-save.png)

 {% endif %}

@@ -227,13 +222,10 @@ If the details for your IdP change, you'll need to edit the SAML SSO configurati

 {% ifversion ghec or ghes %}

-## Further reading
+## 延伸阅读

 {%- ifversion ghec %}
- "[Managing SAML single sign-on for your organization](/organizations/managing-saml-single-sign-on-for-your-organization)"
-{%- endif %}
-{%- ifversion ghes %}
- "[Promoting or demoting a site administrator](/admin/user-management/managing-users-in-your-enterprise/promoting-or-demoting-a-site-administrator)"
-{%- endif %}
+- “[管理组织的 SAML 单一登录](/organizations/managing-saml-single-sign-on-for-your-organization)”{%- endif %} {%- ifversion ghes %}
+- “[升级或降级站点管理员](/admin/user-management/managing-users-in-your-enterprise/promoting-or-demoting-a-site-administrator)”{%- endif %}

 {% endif %}
--- a/translations/zh-CN/content/admin/monitoring-activity-in-your-enterprise/analyzing-how-your-team-works-with-server-statistics/about-server-statistics.md
+++ b/translations/zh-CN/content/admin/monitoring-activity-in-your-enterprise/analyzing-how-your-team-works-with-server-statistics/about-server-statistics.md
@@ -50,51 +50,55 @@ You can disable the {% data variables.product.prodname_server_statistics %} feat

 After you enable {% data variables.product.prodname_server_statistics %}, metrics are collected through a daily job that runs on {% data variables.location.product_location %}. The aggregate metrics are stored on your organization or enterprise account on {% data variables.product.prodname_ghe_cloud %} and are not stored on {% data variables.location.product_location %}.

-The following aggregate metrics will be collected and transmitted on a daily basis and represent the total counts for the day:
-  - `active_hooks`
-  - `admin_users`
-  - `closed_issues`
-  - `closed_milestones`
-  - `collection_date`
-  - `disabled_orgs`
-  - `dormancy_threshold`
-  - `fork_repos`
-  - `ghes_version`
-  - `github_connect_features_enabled`
-  - `inactive_hooks`
-  - `mergeable_pulls`
-  - `merged_pulls`
-  - `open_issues`
-  - `open_milestones`
-  - `org_repos`
-  - `private_gists`
-  - `public_gists`
-  - `root_repos`
-  - `schema_version`
-  - `server_id`
-  - `suspended_users`
-  - `total_commit_comments`
-  - `total_dormant_users`
-  - `total_gist_comments`
-  - `total_gists`
-  - `total_hooks`
-  - `total_issues`
-  - `total_issue_comments`
-  - `total_milestones`
-  - `total_repos`
-  - `total_orgs`
-  - `total_pages`
-  - `total_pull_request_comments`
-  - `total_pulls`
-  - `total_pushes`
-  - `total_team_members`
-  - `total_teams`
-  - `total_users`
-  - `total_wikis`
-  - `unmergeable_pulls`
+The following aggregate metrics will be collected and transmitted on a daily basis and represent the total counts for the day.

-## {% data variables.product.prodname_server_statistics %} payload example
+CSV column | Name | Description |
+---------- | ---- | ----------- |
+A	| `github_connect.features_enabled` | Array of {% data variables.product.prodname_github_connect %} features that are enabled for your instance (see "[About {% data variables.product.prodname_github_connect %}](/admin/configuration/configuring-github-connect/about-github-connect#github-connect-features)" ) |
+B	| `host_name` | The hostname for your instance |
+C	| `dormant_users.dormancy_threshold` | The length of time a user must be inactive to be considered dormant |
+D	| `dormant_users.total_dormant_users` | Number of dormant user accounts |
+E	| `ghes_version` | The version of {% data variables.product.product_name %} that your instance is running |
+F	| `server_id` | The UUID generated for your instance
+G	| `collection_date` | The date the metrics were collected |
+H	| `schema_version` | The version of the database schema used to store this data |
+I	| `ghe_stats.comments.total_commit_comments` | Number of comments on commits |
+J	| `ghe_stats.comments.total_gist_comments` | Number of comments on gists |
+K	| `ghe_stats.comments.total_issue_comments` | Number of comments on issues | 
+L	| `ghe_stats.comments.total_pull_request_comments` | Number of comments on pull requests |
+M	| `ghe_stats.gists.total_gists` | Number of gists (both secret and public) |
+N	| `ghe_stats.gists.private_gists` | Number of secret gists |
+O	| `ghe_stats.gists.public_gists` | Number of public gists |
+P	| `ghe_stats.hooks.total_hooks` | Number of pre-receive hooks (both active and inactive) |
+Q	| `ghe_stats.hooks.active_hooks` | Number of active pre-receive hooks |
+R	| `ghe_stats.hooks.inactive_hooks` | Number of inactive pre-receive hooks |
+S	| `ghe_stats.issues.total_issues` | Number of issues (both open and closed) |
+T	| `ghe_stats.issues.open_issues` | Number of open issues |
+U	| `ghe_stats.issues.closed_issues` | Number of closed issues |
+V	| `ghe_stats.milestones.total_milestones` | Number of milestones (both open and closed) |
+W	| `ghe_stats.milestones.open_milestones` | Number of open milestones |
+X	| `ghe_stats.milestones.closed_milestones` | Number of closed milestones |
+Y	| `ghe_stats.orgs.total_orgs` | Number of organizations (both enabled and disabled) |
+Z	| `ghe_stats.orgs.disabled_orgs` | Number of disabled organizations |
+AA | `ghe_stats.orgs.total_teams` | Number of teams |
+AB | `ghe_stats.orgs.total_team_members` | Number of team members |
+AC | `ghe_stats.pages.total_pages` | Number of {% data variables.product.prodname_pages %} sites |
+AD | `ghe_stats.pulls.total_pulls` | Number of pull requests |
+AE | `ghe_stats.pulls.merged_pulls` | Number of merged pull requests |
+AF | `ghe_stats.pulls.mergeable_pulls` | Number of pull requests that are currently mergeable |
+AG | `ghe_stats.pulls.unmergeable_pulls` | Number of pull requests that are currently unmergeable |
+AH | `ghe_stats.repos.total_repos` | Number of repositories (both upstream repositories and forks) |
+AI | `ghe_stats.repos.root_repos` | Number of upstream repositories |
+AJ | `ghe_stats.repos.fork_repos` | Number of forks |
+AK | `ghe_stats.repos.org_repos` | Number of repositories owned by organizations |
+AL | `ghe_stats.repos.total_pushes` | Number of pushes to repositories |
+AM | `ghe_stats.repos.total_wikis` | Number of wikis |
+AN | `ghe_stats.users.total_users` | Number of user accounts |
+AO | `ghe_stats.users.admin_users` | Number of user accounts that are site administrators |
+AP | `ghe_stats.users.suspended_users` | Number of user accounts that are suspended |

-To see an example of the response payload for the {% data variables.product.prodname_server_statistics %} API, see "[Requesting {% data variables.product.prodname_server_statistics %} using the REST API](/admin/monitoring-activity-in-your-enterprise/analyzing-how-your-team-works-with-server-statistics/requesting-server-statistics-using-the-rest-api)."
+## {% data variables.product.prodname_server_statistics %} data examples

-To see a list of the data collected, see "[{% data variables.product.prodname_server_statistics %} data collected](#server-statistics-data-collected)."
+To see an example of the headings included in the CSV export for {% data variables.product.prodname_server_statistics %}, download the [{% data variables.product.prodname_server_statistics %} CSV example](/assets/server-statistics-csv-example.csv).
+
+To see an example of the response payload for the {% data variables.product.prodname_server_statistics %} API, see "[Requesting {% data variables.product.prodname_server_statistics %} using the REST API](/admin/monitoring-activity-in-your-enterprise/analyzing-how-your-team-works-with-server-statistics/requesting-server-statistics-using-the-rest-api)."
--- a/translations/zh-CN/content/admin/policies/enforcing-policies-for-your-enterprise/enforcing-policies-for-security-settings-in-your-enterprise.md
+++ b/translations/zh-CN/content/admin/policies/enforcing-policies-for-your-enterprise/enforcing-policies-for-security-settings-in-your-enterprise.md
@@ -1,6 +1,6 @@
 ---
-title: Enforcing policies for security settings in your enterprise
-intro: 'You can enforce policies to manage security settings in your enterprise''s organizations, or allow policies to be set in each organization.'
+title: 为企业中的安全设置实施策略
+intro: 您可以实施策略来管理企业组织中的安全设置，或允许在每个组织中设置策略。
 permissions: Enterprise owners can enforce policies for security settings in an enterprise.
 miniTocMaxHeadingLevel: 3
 redirect_from:
@@ -21,100 +21,89 @@ topics:
  - Policies
  - Security
 shortTitle: Policies for security settings
+ms.openlocfilehash: 7a383ed586d084a7e2562a5927dd198caca65037
+ms.sourcegitcommit: 7a74d5796695bb21c30e4031679253cbc16ceaea
+ms.translationtype: HT
+ms.contentlocale: zh-CN
+ms.lasthandoff: 11/28/2022
+ms.locfileid: '148183962'
 ---
+## 关于企业中安全设置的策略

-## About policies for security settings in your enterprise
-
-You can enforce policies to control the security settings for organizations owned by your enterprise on {% data variables.product.product_name %}. By default, organization owners can manage security settings. 
+您可以在 {% data variables.product.product_name %} 上实施策略以控制企业拥有的组织的安全设置。 默认情况下，组织所有者可以管理安全设置。 

 {% ifversion ghec or ghes %}

-## Requiring two-factor authentication for organizations in your enterprise
+## 要求企业中的组织进行双重身份验证

-Enterprise owners can require that organization members, billing managers, and outside collaborators in all organizations owned by an enterprise use two-factor authentication to secure their user accounts.
+企业所有者可以要求企业拥有的所有组织中的组织成员、帐单管理员和外部协作者使用双重身份验证来保护其用户帐户。

-Before you can require 2FA for all organizations owned by your enterprise, you must enable two-factor authentication for your own account. For more information, see "[Securing your account with two-factor authentication (2FA)](/articles/securing-your-account-with-two-factor-authentication-2fa/)."
+您必须为自己的帐户启用双重身份验证，然后才能对企业拥有的所有组织都要求 2FA。 有关详细信息，请参阅“[使用双因素身份验证 (2FA) 保护帐户](/articles/securing-your-account-with-two-factor-authentication-2fa/)”。

 {% warning %}

-**Warnings:**
+警告：

- When you require two-factor authentication for your enterprise, members, outside collaborators, and billing managers (including bot accounts) in all organizations owned by your enterprise who do not use 2FA will be removed from the organization and lose access to its repositories. They will also lose access to their forks of the organization's private repositories. You can reinstate their access privileges and settings if they enable two-factor authentication for their account within three months of their removal from your organization. For more information, see "[Reinstating a former member of your organization](/articles/reinstating-a-former-member-of-your-organization)."
- Any organization owner, member, billing manager, or outside collaborator in any of the organizations owned by your enterprise who disables 2FA for their account after you've enabled required two-factor authentication will automatically be removed from the organization.
- If you're the sole owner of an enterprise that requires two-factor authentication, you won't be able to disable 2FA for your user account without disabling required two-factor authentication for the enterprise.
+- 当您需要为企业进行双重身份验证时，不使用 2FA 的企业拥有的所有组织中的成员、外部协作者和帐单管理员（包括自动程序帐户）将从组织中删除，并失去对其仓库的访问权限。 他们还会失去对组织私有仓库的复刻的访问权限。 如果他们在从你的组织中删除后的三个月内为其帐户启用双因素身份验证，则可以恢复其访问特权和设置。 有关详细信息，请参阅“[恢复组织的前成员](/articles/reinstating-a-former-member-of-your-organization)”。
+- 为其帐户禁用 2FA 的企业拥有的任何组织中的任何组织所有者、成员、帐单管理员或外部协作者在你启用所需的双重身份验证后将自动从组织中删除。
+- 如果你是某个要求双因素身份验证的企业的唯一所有者，则在不为企业禁用双因素身份验证要求的情况下，你将无法为用户帐户禁用 2FA。

 {% endwarning %}

-Before you require use of two-factor authentication, we recommend notifying organization members, outside collaborators, and billing managers and asking them to set up 2FA for their accounts. Organization owners can see if members and outside collaborators already use 2FA on each organization's People page. For more information, see "[Viewing whether users in your organization have 2FA enabled](/articles/viewing-whether-users-in-your-organization-have-2fa-enabled)."
+在您要求使用双重身份验证之前，我们建议通知组织成员、外部协作者和帐单管理员，并要求他们为帐户设置双重身份验证。 组织所有者可以查看成员和外部协作者是否已在每个组织的 People（人员）页面上使用 2FA。 有关详细信息，请参阅“[查看组织中的用户是否启用了 2FA](/articles/viewing-whether-users-in-your-organization-have-2fa-enabled)”。

-{% data reusables.enterprise-accounts.access-enterprise %}
-{% data reusables.enterprise-accounts.settings-tab %}
-{% data reusables.enterprise-accounts.security-tab %}
-4. Under "Two-factor authentication", review the information about changing the setting. {% data reusables.enterprise-accounts.view-current-policy-config-orgs %}
-5. Under "Two-factor authentication", select **Require two-factor authentication for all organizations in your business**, then click **Save**.
-  ![Checkbox to require two-factor authentication](/assets/images/help/business-accounts/require-2fa-checkbox.png)
-6. If prompted, read the information about members and outside collaborators who will be removed from the organizations owned by your enterprise. To confirm the change, type your enterprise's name, then click **Remove members & require two-factor authentication**.
-  ![Confirm two-factor enforcement box](/assets/images/help/business-accounts/confirm-require-2fa.png)
-7. Optionally, if any members or outside collaborators are removed from the organizations owned by your enterprise, we recommend sending them an invitation to reinstate their former privileges and access to your organization. Each person must enable two-factor authentication before they can accept your invitation.
+{% data reusables.enterprise-accounts.access-enterprise %} {% data reusables.enterprise-accounts.settings-tab %} {% data reusables.enterprise-accounts.security-tab %}
+4. 在“Two-factor authentication（双重身份验证）”下，审查有关更改设置的信息。 {% data reusables.enterprise-accounts.view-current-policy-config-orgs %}
+5. 在“双因素身份验证”下，选择“要求对企业中的所有组织进行双因素身份验证”，然后单击“保存” 。
+  ![要求进行双因素身份验证的复选框](/assets/images/help/business-accounts/require-2fa-checkbox.png)
+6. 如果出现提示，请阅读有关将从企业所拥有的组织中删除的成员和外部协作者的信息。 若要确认更改，请键入企业的名称，然后单击“删除成员并要求进行双因素身份验证”。
+  ![确认强制执行双因素身份验证的框](/assets/images/help/business-accounts/confirm-require-2fa.png)
+7. （可选）如果从您的企业拥有的组织中删除了任何成员或外部协作者，我们建议向他们发送邀请，以恢复其以前对组织的权限和访问权限。 每个人都必须启用双重身份验证，然后才能接受您的邀请。

 {% endif %}

-## Managing SSH certificate authorities for your enterprise
+## 管理企业的 SSH 认证机构

-You can use a SSH certificate authorities (CA) to allow members of any organization owned by your enterprise to access that organization's repositories using SSH certificates you provide. {% data reusables.organizations.can-require-ssh-cert %} For more information, see "[About SSH certificate authorities](/organizations/managing-git-access-to-your-organizations-repositories/about-ssh-certificate-authorities)."
+您可以使用 SSH 认证机构 (CA) 来允许企业拥有的任何组织的成员使用您提供的 SSH 证书访问该组织的存储库。 {% data reusables.organizations.can-require-ssh-cert %} 有关详细信息，请参阅“[关于 SSH 证书颁发机构](/organizations/managing-git-access-to-your-organizations-repositories/about-ssh-certificate-authorities)”。

 {% data reusables.organizations.add-extension-to-cert %}

-### Adding an SSH certificate authority
+### 添加 SSH 认证中心

-If you require SSH certificates for your enterprise, enterprise members should use a special URL for Git operations over SSH. For more information, see "[About SSH certificate authorities](/organizations/managing-git-access-to-your-organizations-repositories/about-ssh-certificate-authorities#about-ssh-urls-with-ssh-certificates)."
+如果您的企业需要 SSH 证书，企业成员应使用特殊的 URL 通过 SSH 进行 Git 操作。 有关详细信息，请参阅“[关于 SSH 证书颁发机构](/organizations/managing-git-access-to-your-organizations-repositories/about-ssh-certificate-authorities#about-ssh-urls-with-ssh-certificates)”。

-{% data reusables.enterprise-accounts.access-enterprise %}
-{% data reusables.enterprise-accounts.settings-tab %}
-{% data reusables.enterprise-accounts.security-tab %}
-{% data reusables.organizations.new-ssh-ca %}
-{% data reusables.organizations.require-ssh-cert %}
+{% data reusables.enterprise-accounts.access-enterprise %} {% data reusables.enterprise-accounts.settings-tab %} {% data reusables.enterprise-accounts.security-tab %} {% data reusables.organizations.new-ssh-ca %} {% data reusables.organizations.require-ssh-cert %}

-### Deleting an SSH certificate authority
+### 删除 SSH 认证中心

-Deleting a CA cannot be undone. If you want to use the same CA in the future, you'll need to upload the CA again.
+对 CA 的删除无法撤销。 如果以后要使用同一 CA，您需要重新上传该 CA。

-{% data reusables.enterprise-accounts.access-enterprise %}
-{% data reusables.enterprise-accounts.settings-tab %}
-{% data reusables.enterprise-accounts.security-tab %}
-{% data reusables.organizations.delete-ssh-ca %}
+{% data reusables.enterprise-accounts.access-enterprise %} {% data reusables.enterprise-accounts.settings-tab %} {% data reusables.enterprise-accounts.security-tab %} {% data reusables.organizations.delete-ssh-ca %}

 {% ifversion sso-redirect %}
-## Managing SSO for unauthenticated users
+## 管理未经身份验证的用户的 SSO

 {% data reusables.enterprise-managed.sso-redirect-release-phase %}

-If your enterprise uses {% data variables.product.prodname_emus %}, you can choose what unauthenticated users see when they attempt to access your enterprise's resources. For more information about {% data variables.product.prodname_emus %}, see "[About {% data variables.product.prodname_emus %}](/enterprise-cloud@latest/admin/identity-and-access-management/using-enterprise-managed-users-for-iam/about-enterprise-managed-users)."
+如果你的企业使用 {% data variables.product.prodname_emus %}，你可以选择未经身份验证的用户在尝试访问企业资源时看到的内容。 有关 {% data variables.product.prodname_emus %} 的详细信息，请参阅“[关于 {% data variables.product.prodname_emus %}](/enterprise-cloud@latest/admin/identity-and-access-management/using-enterprise-managed-users-for-iam/about-enterprise-managed-users)”。

-By default, to hide the existence of private resources, when an unauthenticated user attempts to access your enterprise, {% data variables.product.company_short %} displays a 404 error.
+默认情况下，为了隐藏专用资源的存在，当未经身份验证的用户尝试访问你的企业时，{% data variables.product.company_short %} 将显示 404 错误。

-To prevent confusion from your developers, you can change this behavior so that users are automatically redirected to single sign-on (SSO) through your identity provider (IdP). When you enable automatic redirects, anyone who visits the URL for any of your enterprise's resources will be able to see that the resource exists. However, they'll only be able to see the resource if they have appropriate access after authenticating with your IdP.
+为防止你的开发人员混淆，你可以更改此行为，以便用户通过标识提供者 (IdP) 自动重定向到单一登录 (SSO)。 启用自动重定向后，访问企业任何资源的 URL 的任何人都可以看到该资源是否存在。 但是，只有在他们使用你的 IdP 进行身份验证后具有适当的访问权限时，他们才能看到资源。

 {% note %}

-**Note:** If a user is signed in to their personal account when they attempt to access any of your enterprise's resources, they'll be automatically signed out and redirected to SSO to sign in to their {% data variables.enterprise.prodname_managed_user %}. For more information, see "[Managing multiple accounts](/enterprise-cloud@latest/account-and-profile/setting-up-and-managing-your-personal-account-on-github/managing-your-personal-account/managing-multiple-accounts)."
+注意：如果用户在尝试访问企业的任何资源时登录到其个人帐户，他们将被自动注销并重定向到 SSO 以登录到其 {% data variables.enterprise.prodname_managed_user %}。 有关详细信息，请参阅“[管理多个帐户](/enterprise-cloud@latest/account-and-profile/setting-up-and-managing-your-personal-account-on-github/managing-your-personal-account/managing-multiple-accounts)”。

 {% endnote %}

-{% data reusables.enterprise-accounts.access-enterprise %}
-{% data reusables.enterprise-accounts.settings-tab %}
-{% data reusables.enterprise-accounts.security-tab %}
-1. Under "Single sign-on settings", select or deselect **Automatically redirect users to sign in**.
+{% data reusables.enterprise-accounts.access-enterprise %} {% data reusables.enterprise-accounts.settings-tab %} {% data reusables.enterprise-accounts.security-tab %}
+1. 在“单一登录设置”下，选择或取消选择“自动重定向用户以登录”。

-   ![Checkbox to automatically redirect users to sign in](/assets/images/enterprise/security/Enterprise-Redirect-Users-To-Sign-In-Checkbox.png)
-{% endif %}
+   ![用于自动重定向用户以进行登录的复选框](/assets/images/enterprise/security/Enterprise-Redirect-Users-To-Sign-In-Checkbox.png) {% endif %}

-## Further reading
+## 延伸阅读

- "[About identity and access management for your enterprise](/admin/authentication/managing-identity-and-access-for-your-enterprise/about-identity-and-access-management-for-your-enterprise)"
-{%- ifversion ghec %}
- "[Accessing compliance reports for your enterprise](/admin/overview/accessing-compliance-reports-for-your-enterprise)"
-{%- endif %}
-{%- ifversion ghec or ghae %}
- "[Restricting network traffic with an IP allow list with an IP allow list](/admin/configuration/configuring-your-enterprise/restricting-network-traffic-to-your-enterprise-with-an-ip-allow-list)"
-{%- endif %}
+- “[关于企业的标识和访问管理](/admin/authentication/managing-identity-and-access-for-your-enterprise/about-identity-and-access-management-for-your-enterprise)”{%- ifversion ghec %}
+- “[访问企业的合规性报告](/admin/overview/accessing-compliance-reports-for-your-enterprise)”{%- endif %} {%- ifversion ghec or ghae %}
+- [使用 IP 允许列表限制网络流量](/admin/configuration/configuring-your-enterprise/restricting-network-traffic-to-your-enterprise-with-an-ip-allow-list){%- endif %}
--- a/translations/zh-CN/content/admin/user-management/managing-users-in-your-enterprise/exporting-membership-information-for-your-enterprise.md
+++ b/translations/zh-CN/content/admin/user-management/managing-users-in-your-enterprise/exporting-membership-information-for-your-enterprise.md
@@ -7,19 +7,13 @@ topics:
  - Enterprise
 shortTitle: Export membership information
 permissions: Enterprise owners can export membership information for an enterprise.
-ms.openlocfilehash: ba7519aae1b38cd629a46baeacd5edc9d138efdc
-ms.sourcegitcommit: f638d569cd4f0dd6d0fb967818267992c0499110
+ms.openlocfilehash: 8da0e7b91e8bff85cb27fb7df3f06e62bdb290f2
+ms.sourcegitcommit: 7e2b5213fd15d91222725ecab5ee28cef378d3ad
 ms.translationtype: HT
 ms.contentlocale: zh-CN
-ms.lasthandoff: 10/25/2022
-ms.locfileid: '148106419'
+ms.lasthandoff: 11/29/2022
+ms.locfileid: '148185541'
 ---
-{% note %}
-
-注意：导出企业的成员身份信息目前为 beta 版，可能会随时更改。
-
-{% endnote %}
-
 若要对有权访问企业资源的人员执行审核，可以下载企业成员身份信息的 CSV 报表。

 {% data reusables.enterprise-accounts.access-enterprise %} {% data reusables.enterprise-accounts.people-tab %}
--- a/translations/zh-CN/content/authentication/keeping-your-account-and-data-secure/authorizing-oauth-apps.md
+++ b/translations/zh-CN/content/authentication/keeping-your-account-and-data-secure/authorizing-oauth-apps.md
@@ -1,6 +1,6 @@
 ---
-title: Authorizing OAuth Apps
-intro: 'You can connect your {% data variables.product.product_name %} identity to third-party applications using OAuth. When authorizing an {% data variables.product.prodname_oauth_app %}, you should ensure you trust the application, review who it''s developed by, and review the kinds of information the application wants to access.'
+title: 授权 OAuth 应用
+intro: '您可以将 {% data variables.product.product_name %} 身份连接到使用 OAuth 的第三方应用程序。 在授权 {% data variables.product.prodname_oauth_app %} 时，应确保您信任应用程序，查阅开发者是谁，并查阅应用程序要访问的信息类型。'
 redirect_from:
  - /articles/authorizing-oauth-apps
  - /github/authenticating-to-github/authorizing-oauth-apps
@@ -13,89 +13,95 @@ versions:
 topics:
  - Identity
  - Access management
+ms.openlocfilehash: 7d116f8fc5117cdcbdbd5582e007351c47b2d55d
+ms.sourcegitcommit: 7a74d5796695bb21c30e4031679253cbc16ceaea
+ms.translationtype: HT
+ms.contentlocale: zh-CN
+ms.lasthandoff: 11/28/2022
+ms.locfileid: '148184018'
 ---
-When an {% data variables.product.prodname_oauth_app %} wants to identify you by your account on {% ifversion ghae %}{% data variables.product.product_name %}{% else %}{% data variables.location.product_location %}{% endif %}, you'll see a page with the app's developer contact information and a list of the specific data that's being requested.
+当 {% data variables.product.prodname_oauth_app %} 想要通过你在 {% ifversion ghae %}{% data variables.product.product_name %}{% else %}{% data variables.location.product_location %}{% endif %} 上的帐户识别你时，你会看到一个页面，其中包含该应用的开发者联系信息以及所请求的特定数据列表。

 {% ifversion fpt or ghec %}

 {% tip %}

-**Tip:** You must [verify your email address](/articles/verifying-your-email-address) before you can authorize an {% data variables.product.prodname_oauth_app %}.
+提示：必须先[验证电子邮件地址](/articles/verifying-your-email-address)，才能为 {% data variables.product.prodname_oauth_app %} 授权。

 {% endtip %}

 {% endif %}

-## {% data variables.product.prodname_oauth_app %} access
+## {% data variables.product.prodname_oauth_app %} 访问

-{% data variables.product.prodname_oauth_apps %} can have *read* or *write* access to your {% data variables.product.product_name %} data.
+{% data variables.product.prodname_oauth_apps %} 可以具有对 {% data variables.product.product_name %} 数据的读取或写入权限 。

- **Read access** only allows an app to *look at* your data.
- **Write access** allows an app to *change* your data.
+- 读取权限仅允许应用查看数据。
+- 写入权限允许应用更改数据。

 {% tip %}

-**Tip:** {% data reusables.user-settings.review_oauth_tokens_tip %}
+提示：{% data reusables.user-settings.review_oauth_tokens_tip %}

 {% endtip %}

-### About OAuth scopes
+### 关于 OAuth 范围

-*Scopes* are named groups of permissions that an {% data variables.product.prodname_oauth_app %} can request to access both public and non-public data.
+范围是 {% data variables.product.prodname_oauth_app %} 可以申请访问公共及非公共数据的权限组。

-When you want to use an {% data variables.product.prodname_oauth_app %} that integrates with {% data variables.product.product_name %}, that app lets you know what type of access to your data will be required. If you grant access to the app, then the app will be able to perform actions on your behalf, such as reading or modifying data. For example, if you want to use an app that requests `user:email` scope, the app will have read-only access to your private email addresses. For more information, see "[About scopes for {% data variables.product.prodname_oauth_apps %}](/apps/building-integrations/setting-up-and-registering-oauth-apps/about-scopes-for-oauth-apps)."
+当您想使用集成了 {% data variables.product.product_name %} 的 {% data variables.product.prodname_oauth_app %} 时，该应用程序可让您了解需要的数据访问权限类型。 如果您授予应用程序访问权限，则应用程序将能代您执行操作，例如读取或修改数据。 例如，如果要使用请求 `user:email` 作用域的应用，该应用将具有对专用电子邮件地址的只读访问权限。 有关详细信息，请参阅“[关于 {% data variables.product.prodname_oauth_apps %} 的范围](/apps/building-integrations/setting-up-and-registering-oauth-apps/about-scopes-for-oauth-apps)”。

 {% tip %}

-**Note:** Currently, you can't scope source code access to read-only.
+注意：目前，无法将源代码访问范围限定为只读。

 {% endtip %}

 {% data reusables.apps.oauth-token-limit %}

-### Types of requested data
+### 申请的数据类型

-{% data variables.product.prodname_oauth_apps %} can request several types of data.
+{% data variables.product.prodname_oauth_apps %} 可以申请多种类型的数据。

-| Type of data | Description |
+| 数据类型 | 说明 |
 | --- | --- |
-| Commit status | You can grant access for an app to report your commit status. Commit status access allows apps to determine if a build is a successful against a specific commit. Apps won't have access to your code, but they can read and write status information against a specific commit. |
-| Deployments | Deployment status access allows apps to determine if a deployment is successful against a specific commit for public and private repositories. Apps won't have access to your code. |
-| Gists | [Gist](https://gist.github.com) access allows apps to read or write to both your public and secret Gists. |
-| Hooks | [Webhooks](/webhooks) access allows apps to read or write hook configurations on repositories you manage. |
-| Notifications | Notification access allows apps to read your {% data variables.product.product_name %} notifications, such as comments on issues and pull requests. However, apps remain unable to access anything in your repositories. |
-| Organizations and teams | Organization and teams access allows apps to access and manage organization and team membership. |
-| Personal user data | User data includes information found in your user profile, like your name, e-mail address, and location. |
-| Repositories | Repository information includes the names of contributors, the branches you've created, and the actual files within your repository. Apps can request access for either public or private repositories on a user-wide level. |
-| Repository delete | Apps can request to delete repositories that you administer, but they won't have access to your code. |{% ifversion projects-oauth-scope %}
-| Projects | Access to user and organization {% data variables.projects.projects_v2 %}. Apps can request either read/write or read only access. |{% endif %}
+| 提交状态 | 您可以授权应用程序报告您的提交状态。 提交状态访问权限允许应用程序确定对特定提交的构建是否成功。 应用程序无法访问您的代码，但可以读取和写入特定提交的状态信息。 |
+| 部署 | 部署状态访问权限允许应用程序根据公共和私有仓库的特定提交确定部署是否成功。 应用程序无法访问您的代码。 |
+| Gists | [Gist](https://gist.github.com) 访问权限允许应用读取或写入公共和机密 Gist。 |
+| 挂钩 | [Webhook](/webhooks) 访问权限允许应用在你管理的存储库上读取或写入挂钩配置。 |
+| 通知 | 通知访问权限允许应用程序读取您的 {% data variables.product.product_name %} 通知，如议题和拉取请求的评论。 但应用程序仍然无法访问仓库中的任何内容。 |
+| Organizations and teams（组织和团队） | 组织和团队访问权限允许应用程序访问并管理组织和团队成员资格。 |
+| 个人用户数据 | 用户数据包括您的用户个人资料中的信息，例如您的姓名、电子邮件地址和地点。 |
+| 存储库 | 仓库信息包括贡献者的姓名、您创建的分支以及仓库中的实际文件。 应用程序可以申请访问用户级别的公共或私有仓库。 |
+| 仓库删除 | 应用程序可以申请删除您管理的仓库，但无法访问您的代码。 |{% ifversion projects-oauth-scope %}
+| 项目 | 访问用户和组织 {% data variables.projects.projects_v2 %}。 应用可以请求读/写或只读访问权限。 |{% endif %}

-## Requesting updated permissions
+## 申请更新的权限

-When {% data variables.product.prodname_oauth_apps %} request new access permissions, they will notify you of the differences between their current permissions and the new permissions.
+当 {% data variables.product.prodname_oauth_apps %} 申请新的访问权限时，将会通知其当前权限与新权限之间的差异。

 {% ifversion fpt or ghec %}

-## {% data variables.product.prodname_oauth_apps %} and organizations
+## {% data variables.product.prodname_oauth_apps %} 和组织

-When you authorize an {% data variables.product.prodname_oauth_app %} for your personal account, you'll also see how the authorization will affect each organization you're a member of.
+当你授权 {% data variables.product.prodname_oauth_app %} 访问你的个人帐户时，你还会看到该授权对你所在的每个组织的影响。

- **For organizations *with* {% data variables.product.prodname_oauth_app %} access restrictions, you can request that organization admins approve the application for use in that organization.** If the organization does not approve the application, then the application will only be able to access the organization's public resources. If you're an organization admin, you can [approve the application](/articles/approving-oauth-apps-for-your-organization) yourself.
+- 对于具有 {% data variables.product.prodname_oauth_app %} 访问限制的组织，你可以请求组织管理员批准应用程序在该组织中使用。 如果组织未批准应用程序，则应用程序只能访问组织的公共资源。 如果你是组织管理员，则可以自行[批准应用程序](/articles/approving-oauth-apps-for-your-organization)。

- **For organizations *without* {% data variables.product.prodname_oauth_app %} access restrictions, the application will automatically be authorized for access to that organization's resources.** For this reason, you should be careful about which {% data variables.product.prodname_oauth_apps %} you approve for access to your personal account resources as well as any organization resources.
+- 对于没有 {% data variables.product.prodname_oauth_app %} 访问限制的组织，将自动授予应用程序对该组织资源的访问权限。 因此，应注意批准哪些 {% data variables.product.prodname_oauth_apps %} 访问你的个人帐户资源以及任何组织资源。

-If you belong to any organizations with SAML single sign-on (SSO) enabled, and you have created a linked identity for that organization by authenticating via SAML in the past, you must have an active SAML session for each organization each time you authorize an {% data variables.product.prodname_oauth_app %}.
+如果你属于启用了 SAML 单一登录 (SSO) 的任何组织，并且你过去已通过 SAML 进行身份验证为该组织创建了链接标识，则每次授权 {% data variables.product.prodname_oauth_app %} 时，都必须为每个组织创建一个活动的 SAML 会话。

 {% note %}

-**Note:** If you're encountering issues with an authorized {% data variables.product.prodname_oauth_app %} or {% data variables.product.prodname_github_app %} accessing an organization that is protected by SAML, you may need to revoke the app from your [Authorized {% data variables.product.prodname_github_apps %}](https://github.com/settings/applications) or [Authorized {% data variables.product.prodname_oauth_apps %}](https://github.com/settings/apps/authorizations) page, visit the organization to authenticate and establish an active SAML session, and then attempt to reauthorize the app by accessing it.
+注意：如果在访问受 SAML 保护的组织时遇到授权 {% data variables.product.prodname_oauth_app %} 或 {% data variables.product.prodname_github_app %} 的问题，则可能需要从[授权的 {% data variables.product.prodname_github_apps %}](https://github.com/settings/applications) 或[授权的 {% data variables.product.prodname_oauth_apps %}](https://github.com/settings/apps/authorizations) 页面撤销应用，访问组织进行身份验证并建立活动的 SAML 会话，然后尝试通过访问应用重新授权该应用。

 {% endnote %}

-## Further reading
+## 延伸阅读

- "[About {% data variables.product.prodname_oauth_app %} access restrictions](/articles/about-oauth-app-access-restrictions)"
- "[Authorizing GitHub Apps](/github/authenticating-to-github/keeping-your-account-and-data-secure/authorizing-github-apps)"
- "[{% data variables.product.prodname_marketplace %} support](/articles/github-marketplace-support)"
+- [关于 {% data variables.product.prodname_oauth_app %} 访问限制](/articles/about-oauth-app-access-restrictions)
+- [为 GitHub 应用授权](/github/authenticating-to-github/keeping-your-account-and-data-secure/authorizing-github-apps)
+- [{% data variables.product.prodname_marketplace %} 支持](/articles/github-marketplace-support)

 {% endif %}
--- a/translations/zh-CN/content/code-security/dependabot/dependabot-alerts/viewing-and-updating-dependabot-alerts.md
+++ b/translations/zh-CN/content/code-security/dependabot/dependabot-alerts/viewing-and-updating-dependabot-alerts.md
@@ -230,3 +230,13 @@ You can view all open alerts, and you can reopen alerts that have been previousl
   ![Screenshot of closed alerts with "Reopen" button emphasized](/assets/images/help/graphs/reopen-multiple-alerts.png)

 {% endif %}
+
+ 
+## Reviewing the audit logs for {% data variables.product.prodname_dependabot_alerts %}
+
+When a member of your organization {% ifversion not fpt %}or enterprise {% endif %}performs an action related to {% data variables.product.prodname_dependabot_alerts %}, you can review the actions in the audit log. For more information about accessing the log, see "[Reviewing the audit log for your organization](/organizations/keeping-your-organization-secure/reviewing-the-audit-log-for-your-organization#accessing-the-audit-log){% ifversion not fpt %}" and "[Accessing the audit log for your enterprise](/admin/monitoring-activity-in-your-enterprise/reviewing-audit-logs-for-your-enterprise/accessing-the-audit-log-for-your-enterprise)."{% else %}."{% endif %}
+{% ifversion dependabot-alerts-audit-log %}
+
+![Screenshot of the audit log showing Dependabot alerts](/assets/images/help/dependabot/audit-log-UI-dependabot-alert.png){% endif %}
+
+Events in your audit log for {% data variables.product.prodname_dependabot_alerts %} include details such as who performed the action, what the action was, and when the action was performed. {% ifversion dependabot-alerts-audit-log %}The event also includes a link to the alert itself. When a member of your organization dismisses an alert, the event displays the dismissal reason and comment.{% endif %} For information on the {% data variables.product.prodname_dependabot_alerts %} actions, see the `repository_vulnerability_alert` category in "[Reviewing the audit log for your organization](/organizations/keeping-your-organization-secure/managing-security-settings-for-your-organization/reviewing-the-audit-log-for-your-organization#repository_vulnerability_alert-category-actions){% ifversion not fpt %}" and "[Audit log events for your enterprise](/admin/monitoring-activity-in-your-enterprise/reviewing-audit-logs-for-your-enterprise/audit-log-events-for-your-enterprise#repository_vulnerability_alert-category-actions)."{% else %}."{% endif %}
--- a/translations/zh-CN/content/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file.md
+++ b/translations/zh-CN/content/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file.md
@@ -478,8 +478,28 @@ By default, {% data variables.product.prodname_dependabot %} automatically rebas

 Available rebase strategies

- `disabled` to disable automatic rebasing.
 - `auto` to use the default behavior and rebase open pull requests when changes are detected.
+- `disabled` to disable automatic rebasing.
+
+When `rebase-strategy` is set to `auto`, {% data variables.product.prodname_dependabot %} attempts to rebase pull requests in the following cases.
+- When you use {% data variables.product.prodname_dependabot_version_updates %}, for any open {% data variables.product.prodname_dependabot %} pull request when your schedule runs.
+- When you reopen a closed {% data variables.product.prodname_dependabot %} pull request.
+- When you change the value of `target-branch` in the {% data variables.product.prodname_dependabot %} configuration file. For more information about this field, see "[`target-branch`](#target-branch)."
+- When {% data variables.product.prodname_dependabot %} detects that a {% data variables.product.prodname_dependabot %} pull request is in conflict after a recent push to the target branch.
+
+{% note %}
+
+**Note:** {% data variables.product.prodname_dependabot %} will keep rebasing a pull request indefinitely until the pull request is closed, merged or you disable {% data variables.product.prodname_dependabot_updates %}.
+
+{% endnote %}
+
+When `rebase-strategy` is set to `disabled`, {% data variables.product.prodname_dependabot %} stops rebasing pull requests. 
+
+{% note %}
+
+**Note:** This behavior only applies to pull requests that go into conflict with the target branch. {% data variables.product.prodname_dependabot %} will keep rebasing pull requests opened prior to the `rebase-strategy` setting being changed, and pull requests that are part of a scheduled run.
+
+{% endnote %}

 {% data reusables.dependabot.option-affects-security-updates %}

--- a/translations/zh-CN/content/codespaces/codespaces-reference/using-the-github-codespaces-plugin-for-jetbrains.md
+++ b/translations/zh-CN/content/codespaces/codespaces-reference/using-the-github-codespaces-plugin-for-jetbrains.md
@@ -8,12 +8,12 @@ versions:
 type: reference
 topics:
  - Codespaces
-ms.openlocfilehash: 8ffd48856a2653f3db3c871122d3acd23c246d7a
-ms.sourcegitcommit: e8c012864f13f9146e53fcb0699e2928c949ffa8
+ms.openlocfilehash: 3f4ef139386e616d14ef9a9cc5b474c96983de91
+ms.sourcegitcommit: 1a77ceb9e20c002173dda983db9405bcd5be254a
 ms.translationtype: HT
 ms.contentlocale: zh-CN
-ms.lasthandoff: 11/09/2022
-ms.locfileid: '148159444'
+ms.lasthandoff: 11/29/2022
+ms.locfileid: '148185175'
 ---
 {% data reusables.codespaces.codespaces-jetbrains-beta-note %}

@@ -42,16 +42,10 @@ ms.locfileid: '148159444'

 * **刷新活动 codespace**

-  ![“刷新”按钮的屏幕截图](/assets/images/help/codespaces/jetbrains-plugin-icon-refresh-BAK.png)
+  ![“刷新”按钮的屏幕截图](/assets/images/help/codespaces/jetbrains-plugin-icon-refresh.png)

  刷新 {% data variables.product.prodname_github_codespaces %} 工具窗口中的详细信息。 例如，如果使用了 {% data variables.product.prodname_cli %} 更改显示名称，则可以单击此按钮以显示新名称。

-* **断开连接并停止**
-
-  ![“停止”按钮的屏幕截图](/assets/images/help/codespaces/jetbrains-plugin-icon-stop.png)
-
-  停止 codespace，停止远程计算机上的后端 IDE，然后关闭本地 JetBrains 客户端。
-
 * **从 Web 管理 codespace**

  ![“列表”按钮的屏幕截图](/assets/images/help/codespaces/jetbrains-plugin-icon-index.png)
@@ -63,10 +57,3 @@ ms.locfileid: '148159444'
  ![“日志”按钮的屏幕截图](/assets/images/help/codespaces/jetbrains-plugin-icon-log.png)

  在编辑器窗口中打开 codespace 创建日志。 有关详细信息，请参阅“[{% data variables.product.prodname_github_codespaces %} 日志](/codespaces/troubleshooting/github-codespaces-logs)”。
-
-* **重新生成开发容器**
-
-  ![“重新生成”按钮的屏幕截图](/assets/images/help/codespaces/jetbrains-plugin-icon-rebuild.png)
-
-  重新生成 codespace 以应用对开发容器配置所做的更改。 JetBrains 客户端将关闭，必须重新打开 codespace。 有关详细信息，请参阅“[codespace 生命周期](/codespaces/developing-in-codespaces/the-codespace-lifecycle#rebuilding-a-codespace)”。
-
--- a/translations/zh-CN/content/education/manage-coursework-with-github-classroom/teach-with-github-classroom/register-a-learning-management-system-with-github-classroom.md
+++ b/translations/zh-CN/content/education/manage-coursework-with-github-classroom/teach-with-github-classroom/register-a-learning-management-system-with-github-classroom.md
@@ -5,12 +5,12 @@ versions:
  fpt: '*'
 permissions: 'Organization owners who are admins for a classroom can connect learning management systems to {% data variables.product.prodname_classroom %}.'
 shortTitle: Register an LMS
-ms.openlocfilehash: e1c1abed5ce4ebf82c19b29fef9a005fbe4c7a02
-ms.sourcegitcommit: f638d569cd4f0dd6d0fb967818267992c0499110
+ms.openlocfilehash: 408126833cbf7fa8cd4a71d172f6550e82f795a2
+ms.sourcegitcommit: 1a77ceb9e20c002173dda983db9405bcd5be254a
 ms.translationtype: HT
 ms.contentlocale: zh-CN
-ms.lasthandoff: 10/25/2022
-ms.locfileid: '148106851'
+ms.lasthandoff: 11/29/2022
+ms.locfileid: '148185167'
 ---
 ## 关于将 LMS 注册到课堂

@@ -63,8 +63,8 @@ ms.locfileid: '148106851'
   - “颁发者标识符”：`https://canvas.instructure.com`
   - “域”：画布实例的基 URL
   - “客户端 ID”：创建的开发人员密钥中“详细信息”下的“客户端 ID”
-   - “OIDC 授权终结点”：Canvas 实例的基 URL，其末尾添加了 `/login/oauth2/token`。
-   - “OAuth 2.0 令牌检索 URL”：Canvas 实例的基 URL，其末尾添加了 `/api/lti/authorize_redirect`。
+   - “OIDC 授权终结点”：Canvas 实例的基 URL，其末尾添加了 `/api/lti/authorize_redirect`。
+   - “OAuth 2.0 令牌检索 URL”：Canvas 实例的基 URL，其末尾添加了 `/login/oauth2/token`。
   - “密钥集 UEL”：Canvas 实例的基 URL，其末尾添加了 `/api/lti/security/jwks`。

  ![使用 GitHub Classroom 注册 Canvas 实例](/assets/images/help/classroom/register-canvas-with-github-classroom.png)
--- a/translations/zh-CN/content/repositories/releasing-projects-on-github/automatically-generated-release-notes.md
+++ b/translations/zh-CN/content/repositories/releasing-projects-on-github/automatically-generated-release-notes.md
@@ -1,6 +1,6 @@
 ---
-title: 自动生成的发行说明
-intro: 您可以为 GitHub 版本自动生成发行说明
+title: Automatically generated release notes
+intro: You can automatically generate release notes for your GitHub releases
 permissions: Repository collaborators and people with write access to a repository can generate and customize automated release notes for a release.
 versions:
  fpt: '*'
@@ -13,61 +13,71 @@ shortTitle: Automated release notes
 communityRedirect:
  name: Provide GitHub Feedback
  href: 'https://github.com/orgs/community/discussions/categories/general'
-ms.openlocfilehash: a4adfa306873ef172950666756add7d0e67e168d
-ms.sourcegitcommit: 47bd0e48c7dba1dde49baff60bc1eddc91ab10c5
-ms.translationtype: HT
-ms.contentlocale: zh-CN
-ms.lasthandoff: 09/05/2022
-ms.locfileid: '147432014'
 ---
-## 关于自动生成的发行说明

-自动生成的发行说明为 {% data variables.product.prodname_dotcom %} 发行版手动编写发行说明提供了一种自动替代方法。 使用自动生成的发行说明，您可以快速生成发行版内容的概览。 自动生成的发行说明包括合并的拉取请求列表、发布参与者列表和完整更改日志的链接。
+## About automatically generated release notes

-您还可以自定义自动发行说明，使用标签创建自定义类别来组织要包含的拉取请求，并排除某些标签和用户不出现在输出中。
+Automatically generated release notes provide an automated alternative to manually writing release notes for your {% data variables.product.prodname_dotcom %} releases. With automatically generated release notes, you can quickly generate an overview of the contents of a release. Automatically generated release notes include a list of merged pull requests, a list of contributors to the release, and a link to a full changelog.

-## 为新版本创建自动生成的发行说明
+You can also customize your automated release notes, using labels to create custom categories to organize pull requests you want to include, and exclude certain labels and users from appearing in the output.

-{% data reusables.repositories.navigate-to-repo %} {% data reusables.repositories.releases %}
-3. 单击“草拟新发行版”。
-   ![发行版草稿按钮](/assets/images/help/releases/draft_release_button.png)
-4. {% ifversion fpt or ghec %}单击“选择标记”，然后键入{% else %}键入{% endif %}发行版的版本号。 或者，选择现有标记。
-  {% ifversion fpt or ghec %} ![输入标记](/assets/images/help/releases/releases-tag-create.png)
-5. 如果要创建新标记，请单击“创建新标记”。
-![确认要创建新标记](/assets/images/help/releases/releases-tag-create-confirm.png) {% else %} ![发行版标记的版本](/assets/images/enterprise/releases/releases-tag-version.png) {% endif %}
-6. 如果已创建新标记，请使用下拉菜单选择包含要发布的项目的分支。
-  {% ifversion fpt or ghec %}![选择分支](/assets/images/help/releases/releases-choose-branch.png){% else %}![发行版标记的分支](/assets/images/enterprise/releases/releases-tag-branch.png) {% endif %} {%- data reusables.releases.previous-release-tag %}
-7. 在说明文本框右上角，单击{% ifversion previous-release-tag %}“生成发行说明”{% else %}“自动生成发行说明”{% endif %}。{% ifversion previous-release-tag %}![生成发行说明](/assets/images/help/releases/generate-release-notes.png){% else %}![自动生成发行说明](/assets/images/enterprise/3.5/releases/auto-generate-release-notes.png){% endif %}
-8. 检查生成的注释，确保它们包含所有（且仅有）您要包含的信息。
-9. （可选）要在发行版中包含二进制文件（例如已编译的程序），请在二进制文件框中拖放或手动选择文件。
-   ![通过发行版提供 DMG](/assets/images/help/releases/releases_adding_binary.gif)
-10. 若要通知用户发行版尚未准备投入生产，并且可能不稳定，请选择“这是预发行版”。
-   ![用于将发行版标记为预发行版的复选框](/assets/images/help/releases/prerelease_checkbox.png) {%- ifversion fpt or ghec %}
-11. （可选）选择“为此版本创建讨论”，然后选择“类别”下拉菜单，然后单击类别进行版本讨论 。
-  ![用于创建发行版讨论和下拉菜单以选择类别的复选框](/assets/images/help/releases/create-release-discussion.png) {%- endif %}
-12. 如果已准备好公开发行版，请单击“发布发行版”。 若要稍后处理发行版，请单击“保存草稿”。
-   ![“发布发行版”和“草拟发行版”按钮](/assets/images/help/releases/release_buttons.png)
+## Creating automatically generated release notes for a new release
+
+{% data reusables.repositories.navigate-to-repo %}
+{% data reusables.repositories.releases %}
+3. Click **Draft a new release**.
+   ![Releases draft button](/assets/images/help/releases/draft_release_button.png)
+4. {% ifversion fpt or ghec %}Click **Choose a tag** and type{% else %}Type{% endif %} a version number for your release. Alternatively, select an existing tag.
+  {% ifversion fpt or ghec %}
+  ![Enter a tag](/assets/images/help/releases/releases-tag-create.png)
+5. If you are creating a new tag, click **Create new tag**.
+![Confirm you want to create a new tag](/assets/images/help/releases/releases-tag-create-confirm.png)
+  {% else %}
+  ![Releases tagged version](/assets/images/enterprise/releases/releases-tag-version.png)
+{% endif %}
+6. If you have created a new tag, use the drop-down menu to select the branch that contains the project you want to release.
+  {% ifversion fpt or ghec %}![Choose a branch](/assets/images/help/releases/releases-choose-branch.png)
+  {% else %}![Releases tagged branch](/assets/images/enterprise/releases/releases-tag-branch.png)
+  {% endif %}
+{%- data reusables.releases.previous-release-tag %}
+7. To the top right of the description text box, click {% ifversion previous-release-tag %}**Generate release notes**{% else %}**Auto-generate release notes**{% endif %}.{% ifversion previous-release-tag %}
+  ![Generate release notes](/assets/images/help/releases/generate-release-notes.png){% else %}
+  ![Auto-generate release notes](/assets/images/enterprise/3.5/releases/auto-generate-release-notes.png){% endif %}
+8. Check the generated notes to ensure they include all (and only) the information you want to include.
+9. Optionally, to include binary files such as compiled programs in your release, drag and drop or manually select files in the binaries box.
+   ![Providing a DMG with the Release](/assets/images/help/releases/releases_adding_binary.gif)
+10. To notify users that the release is not ready for production and may be unstable, select **This is a pre-release**.
+   ![Checkbox to mark a release as prerelease](/assets/images/help/releases/prerelease_checkbox.png)
+{%- ifversion fpt or ghec %}
+11. Optionally, select **Create a discussion for this release**, then select the **Category** drop-down menu and click a category for the release discussion.
+  ![Checkbox to create a release discussion and drop-down menu to choose a category](/assets/images/help/releases/create-release-discussion.png)
+{%- endif %}
+12. If you're ready to publicize your release, click **Publish release**. To work on the release later, click **Save draft**.
+   ![Publish release and Draft release buttons](/assets/images/help/releases/release_buttons.png)


-## 配置自动生成的发行说明
+## Configuring automatically generated release notes

-{% data reusables.repositories.navigate-to-repo %} {% data reusables.files.add-file %}
-3. 在文件名字段中，键入 `.github/release.yml` 以在 `.github` 目录中创建 `release.yml` 文件。
-  ![新建文件](/assets/images/help/releases/release-yml.png)
-4. 在文件中，使用下面的配置选项，在 YAML 中指定要从此版本中排除的拉取请求标签和作者。 您还可以创建新类别并列出要包含在每个类别中的拉取请求标签。
+{% data reusables.repositories.navigate-to-repo %}
+{% data reusables.files.add-file %}
+3. In the file name field, type `.github/release.yml` to create the `release.yml` file in the `.github` directory.
+  ![Create new file](/assets/images/help/releases/release-yml.png)
+4. In the file, using the configuration options below, specify in YAML the pull request labels and authors you want to exclude from this release. You can also create new categories and list the pull request labels to be included in each of them.

-### 配置选项
+### Configuration options

-| 参数 | 说明 |
+| Parameter | Description |
 | :- | :- |
-| `changelog.exclude.labels` | 不在发行说明中显示拉取请求的标签列表。 |
-| `changelog.exclude.authors` | 要从发行说明中排除其拉取请求的用户或自动程序登录句柄的列表。 |
-| `changelog.categories[*].title` | **必填。** 发行说明中更改类别的标题。 |
-| `changelog.categories[*].labels`| **必填。** 符合此类别的拉取请求条件的标签。 使用 `*` 作为与上述任何类别都不匹配的拉取请求的统称。 |
-| `changelog.categories[*].exclude.labels` | 不在此类别中显示拉取请求的标签列表。 |
-| `changelog.categories[*].exclude.authors` | 要从此类别中排除其拉取请求的用户或自动程序登录句柄的列表。 |
+| `changelog.exclude.labels` | A list of labels that exclude a pull request from appearing in release notes. |
+| `changelog.exclude.authors` | A list of user or bot login handles whose pull requests are to be excluded from release notes. |
+| `changelog.categories[*].title` | **Required.** The title of a category of changes in release notes. |
+| `changelog.categories[*].labels`| **Required.** Labels that qualify a pull request for this category. Use `*` as a catch-all for pull requests that didn't match any of the previous categories. |
+| `changelog.categories[*].exclude.labels` | A list of labels that exclude a pull request from appearing in this category. |
+| `changelog.categories[*].exclude.authors` | A list of user or bot login handles whose pull requests are to be excluded from this category. |

-### 配置示例
+### Example configurations
+
+A configuration for a repository that labels semver releases

 {% raw %}
 ```yaml{:copy}
@@ -94,6 +104,26 @@ changelog:
 ```
 {% endraw %}

-## 延伸阅读
+A configuration for a repository that doesn't tag pull requests but where we want to separate out {% data variables.product.prodname_dependabot %} automated pull requests in release notes (`labels: '*'` is required to display a catchall category)

- [管理标签](/issues/using-labels-and-milestones-to-track-work/managing-labels) 
+{% raw %}
+```yaml{:copy}
+# .github/release.yml
+
+changelog:
+  categories:
+    - title: 🏕 Features
+      labels:
+        - '*'
+      exclude:
+        labels:
+          - dependencies
+    - title: 👒 Dependencies
+      labels:
+        - dependencies
+```
+{% endraw %}
+
+## Further reading
+
+- "[Managing labels](/issues/using-labels-and-milestones-to-track-work/managing-labels)" 
--- a/translations/zh-CN/data/reusables/apps/reauthorize-apps-saml.md
+++ b/translations/zh-CN/data/reusables/apps/reauthorize-apps-saml.md
@@ -0,0 +1,9 @@
+---
+ms.openlocfilehash: a95067136ba91760fb48dae77a42cf9b9377dbeb
+ms.sourcegitcommit: 7a74d5796695bb21c30e4031679253cbc16ceaea
+ms.translationtype: HT
+ms.contentlocale: zh-CN
+ms.lasthandoff: 11/28/2022
+ms.locfileid: "148184040"
+---
+启用 SAML SSO 后，可能需要撤销 {% data variables.product.prodname_oauth_app %} 和 {% data variables.product.prodname_github_app %} 授权并重新授权，然后才能访问组织。 有关详细信息，请参阅“[授权 {% data variables.product.prodname_oauth_apps %}](/authentication/keeping-your-account-and-data-secure/authorizing-oauth-apps#oauth-apps-and-organizations)”。
--- a/translations/zh-CN/data/reusables/audit_log/audit-log-action-categories.md
+++ b/translations/zh-CN/data/reusables/audit_log/audit-log-action-categories.md
@@ -1,192 +1,116 @@
-| Category name | Description
+---
+ms.openlocfilehash: 1dd9305ca2b7cb3e8d25d697de8ae3a83e0c46bb
+ms.sourcegitcommit: 7a74d5796695bb21c30e4031679253cbc16ceaea
+ms.translationtype: HT
+ms.contentlocale: zh-CN
+ms.lasthandoff: 11/28/2022
+ms.locfileid: "148183978"
+---
+| 类别名称 | 说明
 |------------------|-------------------
-{%- ifversion fpt or ghec %}
-| `account` | Contains activities related to an organization account.
-| `advisory_credit`   | Contains activities related to crediting a contributor for a security advisory in the {% data variables.product.prodname_advisory_database %}. For more information, see "[About {% data variables.product.prodname_dotcom %} Security Advisories](/github/managing-security-vulnerabilities/about-github-security-advisories)."
-{%- endif %}
-| `artifact` | Contains activities related to {% data variables.product.prodname_actions %} workflow run artifacts.
-{%- ifversion audit-log-streaming %}
-| `audit_log_streaming`  | Contains activities related to streaming audit logs for organizations in an enterprise account.
-{%- endif %}
-{%- ifversion fpt or ghec %}
-| `billing` | Contains activities related to an organization's billing.
-{%- endif %}
-{%- ifversion ghec or ghes or ghae %}
-| `business`  | Contains activities related to business settings for an enterprise.
-{%- endif %}
-{%- ifversion code-security-audit-log-events %}
-| `business_advanced_security` | Contains activities related to {% data variables.product.prodname_GH_advanced_security %} in an enterprise. For more information, see "[Managing {% data variables.product.prodname_GH_advanced_security %} features for your enterprise](/admin/code-security/managing-github-advanced-security-for-your-enterprise/managing-github-advanced-security-features-for-your-enterprise)."
-| `business_secret_scanning` | Contains activities related to {% data variables.product.prodname_secret_scanning %} in an enterprise. For more information, see "[Managing {% data variables.product.prodname_GH_advanced_security %} features for your enterprise](/admin/code-security/managing-github-advanced-security-for-your-enterprise/managing-github-advanced-security-features-for-your-enterprise)."
-{%- endif %}
-{%- ifversion secret-scanning-audit-log-custom-patterns %}
-| `business_secret_scanning_custom_pattern` | Contains activities related to custom patterns for {% data variables.product.prodname_secret_scanning %} in an enterprise.
-{%- endif %}
-{%- ifversion code-security-audit-log-events %}
-| `business_secret_scanning_push_protection` | Contains activities related to the push protection feature of {% data variables.product.prodname_secret_scanning %} in an enterprise. For more information, see "[Managing {% data variables.product.prodname_GH_advanced_security %} features for your enterprise](/admin/code-security/managing-github-advanced-security-for-your-enterprise/managing-github-advanced-security-features-for-your-enterprise)."
-| `business_secret_scanning_push_protection_custom_message` | Contains activities related to the custom message displayed when push protection is triggered in an enterprise. For more information, see "[Managing {% data variables.product.prodname_GH_advanced_security %} features for your enterprise](/admin/code-security/managing-github-advanced-security-for-your-enterprise/managing-github-advanced-security-features-for-your-enterprise)."
-{%- endif %}
-| `checks`   | Contains activities related to check suites and runs.
-{%- ifversion fpt or ghec %}
-| `codespaces` | Contains activities related to an organization's codespaces.
-{%- endif %}
-| `commit_comment` | Contains activities related to updating or deleting commit comments.
-{%- ifversion ghes %}
-| `config_entry` |  Contains activities related to configuration settings. These events are only visible in the site admin audit log.
-{%- endif %}
-| `dependabot_alerts`  | Contains organization-level configuration activities for {% data variables.product.prodname_dependabot_alerts %} in existing repositories. For more information, see "[About {% data variables.product.prodname_dependabot_alerts %}](/code-security/dependabot/dependabot-alerts/about-dependabot-alerts)."
-| `dependabot_alerts_new_repos`   | Contains organization-level configuration activities for  {% data variables.product.prodname_dependabot_alerts %} in new repositories created in the organization.
-| `dependabot_repository_access` | Contains activities related to which private repositories in an organization {% data variables.product.prodname_dependabot %} is allowed to access.
-{%- ifversion fpt or ghec or ghes %}
-| `dependabot_security_updates`   | Contains organization-level configuration activities for {% data variables.product.prodname_dependabot_security_updates %} in existing repositories. For more information, see "[Configuring {% data variables.product.prodname_dependabot_security_updates %}](/github/managing-security-vulnerabilities/configuring-dependabot-security-updates)."
-| `dependabot_security_updates_new_repos` | Contains organization-level configuration activities for {% data variables.product.prodname_dependabot_security_updates %} for new repositories created in the organization.
-{%- endif %}
-| `dependency_graph` | Contains organization-level configuration activities for dependency graphs for repositories. For more information, see "[About the dependency graph](/github/visualizing-repository-data-with-graphs/about-the-dependency-graph)."
-| `dependency_graph_new_repos`  | Contains organization-level configuration activities for new repositories created in the organization.
-{%- ifversion fpt or ghec %}
-| `discussion` | Contains activities related to team discussions.
-| `discussion_comment` | Contains activities related to comments posted in discussions on a team page.
-| `discussion_post`   | Contains activities related to discussions posted to a team page.
-| `discussion_post_reply`   | Contains activities related to replies to discussions posted to a team page.
-{%- endif %}
-{%- ifversion ghec or ghes %}
-| `dotcom_connection` | Contains activities related to {% data variables.product.prodname_github_connect %}.
-| `enterprise` | Contains activities related to enterprise settings.
-{%- endif %}
-{%- ifversion ghec %}
-| `enterprise_domain` | Contains activities related to verified enterprise domains.
-| `enterprise_installation` | Contains activities related to {% data variables.product.prodname_github_app %}s associated with an {% data variables.product.prodname_github_connect %} enterprise connection.
-{%- endif %}
-{%- ifversion fpt or ghec %}
-| `environment` | Contains activities related to {% data variables.product.prodname_actions %} environments.
-{%- endif %}
-{%- ifversion ghae %}
-| `external_group` | Contains activities related to Okta groups.
-| `external_identity` | Contains activities related to a user in an Okta group.
-{%- endif %}
-| `gist` | Contains activities related to Gists.
-| `hook` | Contains activities related to webhooks.
-| `integration` | Contains activities related to integrations in an account.
-| `integration_installation` | Contains activities related to integrations installed in an account.
-| `integration_installation_request`  | Contains activities related to organization member requests for owners to approve integrations for use in the organization.
-{%- ifversion ghec or ghae %}
-| `ip_allow_list`   | Contains activities related to enabling or disabling the IP allow list for an organization.
-| `ip_allow_list_entry`   | Contains activities related to the creation, deletion, and editing of an IP allow list entry for an organization.
-{%- endif %}
-| `issue`  | Contains activities related to pinning, transferring, or deleting an issue in a repository.
-| `issue_comment` | Contains activities related to pinning, transferring, or deleting issue comments.
-| `issues` | Contains activities related to enabling or disabling issue creation for an organization.
-{%- ifversion fpt or ghec %}
-| `marketplace_agreement_signature` | Contains activities related to signing the {% data variables.product.prodname_marketplace %} Developer Agreement.
-| `marketplace_listing` | Contains activities related to listing apps in {% data variables.product.prodname_marketplace %}.
-{%- endif %}
-| `members_can_create_pages`   | Contains activities related to managing the publication of {% data variables.product.prodname_pages %} sites for repositories in the organization. For more information, see "[Managing the publication of {% data variables.product.prodname_pages %} sites for your organization](/organizations/managing-organization-settings/managing-the-publication-of-github-pages-sites-for-your-organization)."
-| `members_can_create_private_pages` | Contains activities related to managing the publication of private {% data variables.product.prodname_pages %} sites for repositories in the organization.
-| `members_can_create_public_pages` | Contains activities related to managing the publication of public {% data variables.product.prodname_pages %} sites for repositories in the organization.
-{%- ifversion ghec or ghes or ghae %}
-| `members_can_delete_repos` | Contains activities related to enabling or disabling repository creation for an organization.
-{%- endif %}
-{%- ifversion fpt or ghec %}
-| `members_can_view_dependency_insights` | Contains organization-level configuration activities allowing organization members to view dependency insights.
-| `migration` | Contains activities related to transferring data from a *source* location (such as a {% data variables.product.prodname_dotcom_the_website %} organization or a {% data variables.product.prodname_ghe_server %} instance) to a *target* {% data variables.product.prodname_ghe_server %} instance.
-{%- endif %}
-| `oauth_access` | Contains activities related to OAuth access tokens.
-| `oauth_application` | Contains activities related to OAuth Apps.
-{%- ifversion fpt or ghec %}
-| `oauth_authorization` | Contains activities related to authorizing OAuth Apps.
-{%- endif %}
-| `org`   | Contains activities related to organization membership.
-{%- ifversion ghec or ghes or ghae %}
-| `org_credential_authorization` | Contains activities related to authorizing credentials for use with SAML single sign-on.
-{%- endif %}
-{%- ifversion secret-scanning-audit-log-custom-patterns %}
-| `org_secret_scanning_custom_pattern` | Contains activities related to custom patterns for secret scanning in an organization. For more information, see "[Defining custom patterns for secret scanning](/code-security/secret-scanning/defining-custom-patterns-for-secret-scanning)."
-| `org.secret_scanning_push_protection` | Contains activities related to secret scanning custom patterns in an organization. For more information, see "[Protecting pushes with secret scanning](/code-security/secret-scanning/protecting-pushes-with-secret-scanning)."
-{%- endif %}
-| `organization_default_label` | Contains activities related to default labels for repositories in an organization.
-{%- ifversion fpt or ghec or ghes %}
-| `organization_domain` | Contains activities related to verified organization domains.
-| `organization_projects_change` | Contains activities related to organization-wide project boards in an enterprise.
-{%- endif %}
-{%- ifversion fpt or ghec %}
-| `pages_protected_domain` | Contains activities related to verified custom domains for {% data variables.product.prodname_pages %}.
-| `payment_method`  | Contains activities related to how an organization pays for {% data variables.product.prodname_dotcom %}.
-| `prebuild_configuration` | Contains activities related to prebuild configurations for {% data variables.product.prodname_github_codespaces %}.
-{%- endif %}
-{%- ifversion ghes %}
-| `pre_receive_environment` | Contains activities related to pre-receive hook environments.
-| `pre_receive_hook` | Contains activities related to pre-receive hooks.
-{%- endif %}
-{%- ifversion ghes %}
-| `private_instance_encryption` | Contains activities related to enabling private mode for an enterprise.
-{%- endif %}
-| `private_repository_forking` | Contains activities related to allowing forks of private and internal repositories, for a repository, organization or enterprise.
-{%- ifversion fpt or ghec %}
-| `profile_picture`   | Contains activities related to an organization's profile picture.
-{%- endif %}
-| `project` | Contains activities related to project boards.
-| `project_field` | Contains activities related to field creation and deletion in a project board.
-| `project_view` | Contains activities related to view creation and deletion in a project board.
-| `protected_branch` | Contains activities related to protected branches.
-| `public_key` | Contains activities related to SSH keys and deploy keys.
-| `pull_request` | Contains activities related to pull requests.
-| `pull_request_review` | Contains activities related to pull request reviews.
-| `pull_request_review_comment` | Contains activities related to pull request review comments.
-| `repo` | Contains activities related to the repositories owned by an organization.
-{%- ifversion fpt or ghec %}
-| `repository_advisory` | Contains repository-level activities related to security advisories in the {% data variables.product.prodname_advisory_database %}.  For more information, see "[About {% data variables.product.prodname_dotcom %} Security Advisories](/github/managing-security-vulnerabilities/about-github-security-advisories)."
-| `repository_content_analysis`   | Contains activities related to [enabling or disabling data use for a private repository](/articles/about-github-s-use-of-your-data).
-| `repository_dependency_graph`   | Contains repository-level activities related to enabling or disabling the dependency graph for a {% ifversion fpt or ghec %}private {% endif %}repository. For more information, see "[About the dependency graph](/github/visualizing-repository-data-with-graphs/about-the-dependency-graph)."
-{%- endif %}
-| `repository_image` | Contains activities related to images for a repository.
-| `repository_invitation` | Contains activities related to invitations to join a repository.
-| `repository_projects_change` | Contains activities related to enabling projects for a repository or for all repositories in an organization.
-{%- ifversion ghec or ghes or ghae %}
-| `repository_secret_scanning`  | Contains repository-level activities related to secret scanning. For more information, see "[About secret scanning](/github/administering-a-repository/about-secret-scanning)."
-{%- endif %}
-{%- ifversion secret-scanning-audit-log-custom-patterns %}
-| `repository_secret_scanning_custom_pattern` | Contains activities related to secret scanning custom patterns in a repository. For more information, see "[Defining custom patterns for secret scanning](/code-security/secret-scanning/defining-custom-patterns-for-secret-scanning)." {% endif %}{% ifversion secret-scanning-audit-log-custom-patterns %}
-| `repository_secret_scanning_push_protection` | Contains activities related to secret scanning custom patterns in a repository. For more information, see "[Protecting pushes with secret scanning](/code-security/secret-scanning/protecting-pushes-with-secret-scanning)."
-{%- endif %}
-{%- ifversion fpt or ghec %}
-| `repository_visibility_change` | Contains activities related to allowing organization members to change repository visibilities for the organization.
-{%- endif %}
-| `repository_vulnerability_alert`   | Contains activities related to [{% data variables.product.prodname_dependabot_alerts %}](/code-security/dependabot/dependabot-alerts/about-dependabot-alerts).
-{%- ifversion fpt or ghec %}
-| `repository_vulnerability_alerts` | Contains repository-level configuration activities for {% data variables.product.prodname_dependabot_alerts %}.
-| `required_status_check` | Contains activities related to required status checks for protected branches.
-{%- endif %}
-{%- ifversion ghec or ghes %}
-| `restrict_notification_delivery` | Contains activities related to the restriction of email notifications to approved or verified domains for an enterprise.
-{%- endif %}
-{%- ifversion custom-repository-roles %}
-| `role` | Contains activities related to [custom repository roles](/organizations/managing-peoples-access-to-your-organization-with-roles/managing-custom-repository-roles-for-an-organization).
-{%- endif %}
-{%- ifversion ghec or ghes or ghae %}
-| `secret_scanning`   | Contains organization-level configuration activities for secret scanning in existing repositories. For more information, see "[About secret scanning](/github/administering-a-repository/about-secret-scanning)."
-| `secret_scanning_new_repos` | Contains organization-level configuration activities for secret scanning for new repositories created in the organization.
-{%- endif %}
-{%- ifversion ghec or ghes or ghae %}
-| `security_key` | Contains activities related to security keys registration and removal.
-{%- endif %}
-{%- ifversion fpt or ghec %}
-| `sponsors`  | Contains events related to sponsor buttons (see "[Displaying a sponsor button in your repository](/articles/displaying-a-sponsor-button-in-your-repository)").
-{%- endif %}
-{%- ifversion ghec or ghes or ghae %}
-| `ssh_certificate_authority` | Contains activities related to a SSH certificate authority in an organization or enterprise.
-| `ssh_certificate_requirement` | Contains activities related to requiring members use SSH certificates to access organization resources.
-{%- endif %}{% ifversion sso-redirect %}
-| `sso_redirect` | Contains activities related to automatically redirecting users to sign in (see "[Enforcing policies for security settings in your enterprise](/admin/policies/enforcing-policies-for-your-enterprise/enforcing-policies-for-security-settings-in-your-enterprise#managing-sso-for-unauthenticated-users)").{% endif %}
-| `staff` | Contains activities related to a site admin performing an action.
-| `team` | Contains activities related to teams in an organization.
-| `team_discussions` | Contains activities related to managing team discussions for an organization.
-{%- ifversion ghec %}
-| `team_sync_tenant` | Contains activities related to team synchronization with an IdP for an enterprise or organization.
-{%- endif %}
-{%- ifversion fpt or ghes %}
-| `two_factor_authentication` | Contains activities related to two-factor authentication.
-{%- endif %}
-| `user` | Contains activities related to users in an enterprise or organization.
-{%- ifversion ghec or ghes %}
-| `user_license` | Contains activities related to a user occupying a licensed seat in, and being a member of, an enterprise.
-{%- endif %}
-| `workflows`   | Contains activities related to {% data variables.product.prodname_actions %} workflows.
+{%- ifversion fpt or ghec %} | `account` | 包含与组织帐户相关的活动。
+| `advisory_credit`   | 包含与 {% data variables.product.prodname_advisory_database %} 中安全通告的贡献者积分相关的活动。 有关详细信息，请参阅“[关于 {% data variables.product.prodname_dotcom %} 安全通知](/github/managing-security-vulnerabilities/about-github-security-advisories)”。
+{%- endif %} | `artifact` | 包含与 {% data variables.product.prodname_actions %} 工作流运行工件相关的活动。
+{%- ifversion audit-log-streaming %} | `audit_log_streaming`  | 包含与企业帐户中组织的流式审核日志相关的活动。
+{%- endif %} {%- ifversion fpt or ghec %} | `billing` | 包含与组织计费相关的活动。
+{%- endif %} {%- ifversion ghec or ghes or ghae %} | `business`  | 包含与企业的业务设置相关的活动。
+{%- endif %} {%- ifversion code-security-audit-log-events %} | `business_advanced_security` | 包含与企业中的 {% data variables.product.prodname_GH_advanced_security %} 相关的活动。 有关详细信息，请参阅“[管理企业的 {% data variables.product.prodname_GH_advanced_security %} 功能](/admin/code-security/managing-github-advanced-security-for-your-enterprise/managing-github-advanced-security-features-for-your-enterprise)”。
+| `business_secret_scanning` | 包含与企业中的 {% data variables.product.prodname_secret_scanning %} 相关的活动。 有关详细信息，请参阅“[管理企业的 {% data variables.product.prodname_GH_advanced_security %} 功能](/admin/code-security/managing-github-advanced-security-for-your-enterprise/managing-github-advanced-security-features-for-your-enterprise)”。
+{%- endif %} {%- ifversion secret-scanning-audit-log-custom-patterns %} | `business_secret_scanning_custom_pattern` | 包含与企业中 {% data variables.product.prodname_secret_scanning %} 的自定义模式相关的活动。
+{%- endif %} {%- ifversion code-security-audit-log-events %} | `business_secret_scanning_push_protection` | 包含与企业中 {% data variables.product.prodname_secret_scanning %} 的推送保护功能相关的活动。 有关详细信息，请参阅“[管理企业的 {% data variables.product.prodname_GH_advanced_security %} 功能](/admin/code-security/managing-github-advanced-security-for-your-enterprise/managing-github-advanced-security-features-for-your-enterprise)”。
+| `business_secret_scanning_push_protection_custom_message` | 包含与在企业中触发推送保护时显示的自定义消息相关的活动。 有关详细信息，请参阅“[管理企业的 {% data variables.product.prodname_GH_advanced_security %} 功能](/admin/code-security/managing-github-advanced-security-for-your-enterprise/managing-github-advanced-security-features-for-your-enterprise)”。
+{%- endif %} | `checks`   | 包含与检查套件和运行相关的活动。
+{%- ifversion fpt or ghec %} | `codespaces` | 包含与组织的 codespaces 相关的活动。
+{%- endif %} | `commit_comment` | 包含与更新或删除提交评论相关的活动。
+{%- ifversion ghes %} | `config_entry` |  包含与配置设置相关的活动。 这些事件仅在站点管理员审核日志中可见。
+{%- endif %} | `dependabot_alerts`  | 包含现有存储库中 {% data variables.product.prodname_dependabot_alerts %} 的组织级配置活动。 有关详细信息，请参阅“[关于 {% data variables.product.prodname_dependabot_alerts %}](/code-security/dependabot/dependabot-alerts/about-dependabot-alerts)”。
+| `dependabot_alerts_new_repos`   | 包含组织新建存储库中 {% data variables.product.prodname_dependabot_alerts %} 的组织级配置活动。
+| `dependabot_repository_access` | 包含与允许 {% data variables.product.prodname_dependabot %} 访问组织中哪些专用存储库相关的活动。
+{%- ifversion fpt or ghec or ghes %} | `dependabot_security_updates`   | 包含现有存储库中 {% data variables.product.prodname_dependabot_security_updates %} 的组织级配置活动。 有关详细信息，请参阅“[配置 {% data variables.product.prodname_dependabot_security_updates %}](/github/managing-security-vulnerabilities/configuring-dependabot-security-updates)”。
+| `dependabot_security_updates_new_repos` | 包含组织新建存储库中 {% data variables.product.prodname_dependabot_security_updates %} 的组织级配置活动。
+{%- endif %} | `dependency_graph` | 包含存储库依赖项关系图的组织级配置活动。 有关详细信息，请参阅“[关于依赖项关系图](/github/visualizing-repository-data-with-graphs/about-the-dependency-graph)”。
+| `dependency_graph_new_repos`  | 包含组织新建存储库的组织级配置活动。
+{%- ifversion fpt or ghec %} | `discussion` | 包含与团队讨论相关的活动。
+| `discussion_comment` | 包含与发布到团队页的讨论中的评论相关的活动。
+| `discussion_post`   | 包含与发布到团队页的讨论相关的活动。
+| `discussion_post_reply`   | 包含与发布到团队页的讨论回复相关的活动。
+{%- endif %} {%- ifversion ghec or ghes %} | `dotcom_connection` | 包含与 {% data variables.product.prodname_github_connect %} 相关的活动。
+| `enterprise` | 包含与企业设置相关的活动。
+{%- endif %} {%- ifversion ghec %} | `enterprise_domain` | 包含与已验证的企业域相关的活动。
+| `enterprise_installation` | 包含与和 {% data variables.product.prodname_github_connect %} 企业连接关联的 {% data variables.product.prodname_github_app %} 相关的活动。
+{%- endif %} {%- ifversion fpt or ghec %} | `environment` | 包含与 {% data variables.product.prodname_actions %} 环境相关的活动。
+{%- endif %} {%- ifversion ghae %} | `external_group` | 包含与 Okta 组相关的活动。
+| `external_identity` | 包含与 Okta 组中的用户相关的活动。
+{%- endif %} | `gist` | 包含与 Gists 相关的活动。
+| `hook` | 包含与 Webhook 相关的活动。
+| `integration` | 包含与帐户中的集成相关的活动。
+| `integration_installation` | 包含与帐户中安装的集成相关的活动。
+| `integration_installation_request`  | 包含与组织成员请求所有者批准在组织中使用的集成相关的活动。
+{%- ifversion ghec or ghae %} | `ip_allow_list`   |  包含与为组织启用或禁用 IP 允许列表相关的活动。
+| `ip_allow_list_entry`   | 包含与为组织创建、删除和编辑 IP 允许列表条目相关的活动。
+{%- endif %} | `issue`  | 包含与固定、转移或删除存储库中问题相关的活动。
+| `issue_comment` | 包含与固定、转移或删除问题评论相关的活动。
+| `issues` | 包含与为组织启用或禁用问题创建相关的活动。
+{%- ifversion fpt or ghec %} | `marketplace_agreement_signature` | 包含与签署 {% data variables.product.prodname_marketplace %} 开发者协议相关的活动。
+| `marketplace_listing` | 包含与 {% data variables.product.prodname_marketplace %} 中列出的应用相关的活动。
+{%- endif %} | `members_can_create_pages`   | 包含与管理组织存储库的 {% data variables.product.prodname_pages %} 站点发布相关的活动。 有关详细信息，请参阅“[为组织管理 {% data variables.product.prodname_pages %} 站点的发布](/organizations/managing-organization-settings/managing-the-publication-of-github-pages-sites-for-your-organization)”。
+| `members_can_create_private_pages` | 包含与管理组织存储库的专用 {% data variables.product.prodname_pages %} 站点发布相关的活动。
+| `members_can_create_public_pages` | 包含与管理组织存储库的公共 {% data variables.product.prodname_pages %} 站点发布相关的活动。
+{%- ifversion ghec or ghes or ghae %} | `members_can_delete_repos` | 包含与为组织启用或禁用存储库创建相关的活动。
+{%- endif %} {%- ifversion fpt or ghec %} | `members_can_view_dependency_insights` | 包含允许组织成员查看依赖项见解的组织级配置活动。
+| `migration` | 包含与将数据从源位置（例如 {% data variables.product.prodname_dotcom_the_website %} 组织或 {% data variables.product.prodname_ghe_server %} 实例）传输到目标 {% data variables.product.prodname_ghe_server %} 实例相关的活动 。
+{%- endif %} | `oauth_access` | 包含与 OAuth 访问令牌相关的活动。
+| `oauth_application` | 包含与 OAuth 应用相关的活动。
+{%- ifversion fpt or ghec %} | `oauth_authorization` | 包含与授权 OAuth 应用相关的活动。
+{%- endif %} | `org`   | 包含与组织成员身份相关的活动。
+{%- ifversion ghec or ghes or ghae %} | `org_credential_authorization` | 包含与授权凭据以用于 SAML 单一登录相关的活动。
+{%- endif %} {%- ifversion secret-scanning-audit-log-custom-patterns %} | `org_secret_scanning_custom_pattern` | 包含与组织中机密扫描的自定义模式相关的活动。 有关详细信息，请参阅“[为机密扫描定义自定义模式](/code-security/secret-scanning/defining-custom-patterns-for-secret-scanning)”。
+| `org.secret_scanning_push_protection` | 包含与组织中的机密扫描自定义模式相关的活动。 有关详细信息，请参阅“[使用机密扫描保护推送](/code-security/secret-scanning/protecting-pushes-with-secret-scanning)”。
+{%- endif %} | `organization_default_label` | 包含与组织中存储库的默认标签相关的活动。
+{%- ifversion fpt or ghec or ghes %} | `organization_domain` | 包含与已验证的组织域相关的活动。
+| `organization_projects_change` | 包含与企业中组织范围的项目板相关的活动。
+{%- endif %} {%- ifversion fpt or ghec %} | `pages_protected_domain` | 包含与 {% data variables.product.prodname_pages %} 的已验证自定义域相关的活动。
+| `payment_method`  | 包含与组织如何支付 {% data variables.product.prodname_dotcom %} 相关的活动。
+| `prebuild_configuration` | 包含与 {% data variables.product.prodname_github_codespaces %} 的预生成配置相关的活动。
+{%- endif %} {%- ifversion ghes %} | `pre_receive_environment` | 包含与预接收挂钩环境相关的活动。
+| `pre_receive_hook` | 包含与预接收挂钩相关的活动。
+{%- endif %} {%- ifversion ghes %} | `private_instance_encryption` | 包含与为企业启用专用模式相关的活动。
+{%- endif %} | `private_repository_forking` | 包含与允许存储库、组织或企业的专用和内部存储库分支相关的活动。
+{%- ifversion fpt or ghec %} | `profile_picture`   | 包含与组织的配置文件图片相关的活动。
+{%- endif %} | `project` | 包含与项目板相关的活动。
+| `project_field` | 包含与项目板中的字段创建和删除相关的活动。
+| `project_view` | 包含与项目板中的视图创建和删除相关的活动。
+| `protected_branch` | 包含与受保护分支相关的活动。
+| `public_key` | 包含与 SSH 密钥和部署密钥相关的活动。
+| `pull_request` | 包含与拉取请求评审相关的活动。
+| `pull_request_review` | 包含与拉取请求评审相关的活动。
+| `pull_request_review_comment` | 包含与拉取请求评审评论相关的活动。
+| `repo` | 包含与组织拥有的存储库相关的活动。
+{%- ifversion fpt or ghec %} | `repository_advisory` | 包含与 {% data variables.product.prodname_advisory_database %} 中的安全通告相关的存储库级活动。  有关详细信息，请参阅“[关于 {% data variables.product.prodname_dotcom %} 安全通知](/github/managing-security-vulnerabilities/about-github-security-advisories)”。
+| `repository_content_analysis`   | 包含与[为专用存储库启用或禁用数据使用](/articles/about-github-s-use-of-your-data)相关的活动。
+| `repository_dependency_graph`   | 包含与为{% ifversion fpt or ghec %}专用{% endif %}存储库启用或禁用依赖项关系图相关的存储库级活动。 有关详细信息，请参阅“[关于依赖项关系图](/github/visualizing-repository-data-with-graphs/about-the-dependency-graph)”。
+{%- endif %} | `repository_image` | 包含与存储库映像相关的活动。
+| `repository_invitation` | 包含与邀请加入存储库相关的活动。
+| `repository_projects_change` | 包含与为存储库或组织中的所有存储库启用项目相关的活动。
+{%- ifversion ghec or ghes or ghae %} | `repository_secret_scanning`  | 包含与机密扫描相关的存储库级活动。 有关详细信息，请参阅“[关于机密扫描](/github/administering-a-repository/about-secret-scanning)”。
+{%- endif %} {%- ifversion secret-scanning-audit-log-custom-patterns %} | `repository_secret_scanning_custom_pattern` | 包含与存储库中的机密扫描自定义模式相关的活动。 有关详细信息，请参阅“[为机密扫描定义自定义模式](/code-security/secret-scanning/defining-custom-patterns-for-secret-scanning)”。 {% endif %}{% ifversion secret-scanning-audit-log-custom-patterns %} | `repository_secret_scanning_push_protection` | 包含与存储库中的机密扫描自定义模式相关的活动。 有关详细信息，请参阅“[使用机密扫描保护推送](/code-security/secret-scanning/protecting-pushes-with-secret-scanning)”。
+{%- endif %} {%- ifversion fpt or ghec %} | `repository_visibility_change` | 包含与允许组织成员更改组织的存储库可见性相关的活动。
+{%- endif %} | `repository_vulnerability_alert`   | 包含与 [{% data variables.product.prodname_dependabot_alerts %}](/code-security/dependabot/dependabot-alerts/about-dependabot-alerts) 相关的活动。
+{%- ifversion fpt or ghec %} | `repository_vulnerability_alerts` | 包含 {% data variables.product.prodname_dependabot_alerts %} 的存储库级配置活动。
+| `required_status_check` | 包含与受保护分支所需的状态检查相关的活动。
+{%- endif %} {%- ifversion ghec or ghes %} | `restrict_notification_delivery` | 包含与将电子邮件通知限制为企业的已批准或已验证域相关的活动。
+{%- endif %} {%- ifversion custom-repository-roles %} | `role` | 包含与[自定义存储库角色](/organizations/managing-peoples-access-to-your-organization-with-roles/managing-custom-repository-roles-for-an-organization)相关的活动。
+{%- endif %} {%- ifversion ghec or ghes or ghae %} | `secret_scanning`   | 包含现有存储库中机密扫描的组织级配置活动。 有关详细信息，请参阅“[关于机密扫描](/github/administering-a-repository/about-secret-scanning)”。
+| `secret_scanning_new_repos` | 包含组织新建存储库中机密扫描的组织级配置活动。
+{%- endif %} {%- ifversion ghec or ghes or ghae %} | `security_key` | 包含与安全密钥注册和删除相关的活动。
+{%- endif %} {%- ifversion fpt or ghec %} | `sponsors`  | 包含与赞助按钮相关的事件（请参阅“[在存储库中显示赞助按钮](/articles/displaying-a-sponsor-button-in-your-repository)”）。
+{%- endif %} {%- ifversion ghec or ghes or ghae %} | `ssh_certificate_authority` | 包含与组织或企业中的 SSH 证书颁发机构相关的活动。
+| `ssh_certificate_requirement` | 包含与要求成员使用 SSH 证书访问组织资源相关的活动。
+{%- endif %}{% ifversion sso-redirect %} | `sso_redirect` | 包含与自动重定向用户以进行登录相关的活动（请参阅“[为企业中的安全设置实施策略](/admin/policies/enforcing-policies-for-your-enterprise/enforcing-policies-for-security-settings-in-your-enterprise#managing-sso-for-unauthenticated-users)”）。{% endif %} | `staff` | 包含与执行操作的站点管理员相关的活动。
+| `team` | 包含与组织中的团队相关的活动。
+| `team_discussions` | 包含与管理组织的团队讨论相关的活动。
+{%- ifversion ghec %} | `team_sync_tenant` | 包含与企业或组织的 IdP 进行团队同步相关的活动。
+{%- endif %} {%- ifversion fpt or ghes %} | `two_factor_authentication` | 包含与双因素身份验证相关的活动。
+{%- endif %} | `user` | 包含与企业或组织中的用户相关的活动。
+{%- ifversion ghec or ghes %} | `user_license` | 包含与占用企业许可席位并身为企业成员的用户相关的活动。
+{%- endif %} | `workflows`   | 包含与 {% data variables.product.prodname_actions %} 工作流相关的活动。
--- a/translations/zh-CN/data/reusables/enterprise-managed/sso-redirect-release-phase.md
+++ b/translations/zh-CN/data/reusables/enterprise-managed/sso-redirect-release-phase.md
@@ -0,0 +1,13 @@
+---
+ms.openlocfilehash: f246dbf76575a4338b8fa28ffbd5439c4121505f
+ms.sourcegitcommit: 7a74d5796695bb21c30e4031679253cbc16ceaea
+ms.translationtype: HT
+ms.contentlocale: zh-CN
+ms.lasthandoff: 11/28/2022
+ms.locfileid: "148184042"
+---
+{% note %}
+
+注意：自动重定向用户以登录目前处于 {% data variables.product.prodname_emus %} 的 beta 版本，并可能会发生更改。
+
+{% endnote %}
--- a/translations/zh-CN/data/reusables/identity-and-permissions/ip-allow-lists-enterprise.md
+++ b/translations/zh-CN/data/reusables/identity-and-permissions/ip-allow-lists-enterprise.md
@@ -1,5 +1,13 @@
-When you enable the allow list, the IP addresses you have configured are immediately added to the allow lists of organizations in your enterprise. If you disable the allow list, the addresses are removed from the organization allow lists. 
+---
+ms.openlocfilehash: f88150299e77eff08e5db75a7ef5bf5bd460328b
+ms.sourcegitcommit: 7a74d5796695bb21c30e4031679253cbc16ceaea
+ms.translationtype: HT
+ms.contentlocale: zh-CN
+ms.lasthandoff: 11/28/2022
+ms.locfileid: "148184061"
+---
+启用允许列表时，您配置的 IP 地址将立即添加到企业中的组织允许列表中。 如果禁用允许列表，则地址将从组织允许列表中删除。 

-{% data reusables.identity-and-permissions.org-enterprise-allow-list-interaction %} For more information, see "[Managing allowed IP addresses for your organization](/organizations/keeping-your-organization-secure/managing-allowed-ip-addresses-for-your-organization)."
+{% data reusables.identity-and-permissions.org-enterprise-allow-list-interaction %}有关详细信息，请参阅“[管理组织允许的 IP 地址](/organizations/keeping-your-organization-secure/managing-allowed-ip-addresses-for-your-organization)”。

-You can choose to automatically add to your allow list any IP addresses configured for {% data variables.product.prodname_github_apps %} installed in your enterprise. The creator of a {% data variables.product.prodname_github_app %} can configure an allow list for their application, specifying the IP addresses at which the application runs. By inheriting their allow list into yours, you avoid connection requests from the application being refused. For more information, see "[Allowing access by GitHub Apps](#allowing-access-by-github-apps)."
+您可以选择将为组织中安装的 {% data variables.product.prodname_github_apps %} 配置的任何 IP 地址自动添加到允许列表中。 {% data variables.product.prodname_github_app %} 的创建者可以为其应用程序配置允许列表，指定应用程序运行的 IP 地址。 通过将允许列表继承到您的列表中，您可以避免申请中的连接请求被拒绝。 有关详细信息，请参阅“[允许 GitHub 应用进行访问](#allowing-access-by-github-apps)”。
--- a/translations/zh-CN/data/reusables/identity-and-permissions/org-enterprise-allow-list-interaction.md
+++ b/translations/zh-CN/data/reusables/identity-and-permissions/org-enterprise-allow-list-interaction.md
@@ -0,0 +1,9 @@
+---
+ms.openlocfilehash: 5ce9d5cc32dc07a1fe4ead5b16b75a7b10509467
+ms.sourcegitcommit: 7a74d5796695bb21c30e4031679253cbc16ceaea
+ms.translationtype: HT
+ms.contentlocale: zh-CN
+ms.lasthandoff: 11/28/2022
+ms.locfileid: "148184041"
+---
+组织所有者可以向其组织的允许列表添加其他条目，但他们无法管理从企业帐户的允许列表继承的条目，企业所有者也无法管理添加到组织的允许列表的条目。 
--- a/translations/zh-CN/data/reusables/organizations/require-ssh-cert.md
+++ b/translations/zh-CN/data/reusables/organizations/require-ssh-cert.md
@@ -1,8 +1,16 @@
-1. Optionally, to require members to use SSH certificates, select **Require SSH Certificates**, then click **Save**.
-    ![Require SSH Certificate checkbox and save button](/assets/images/help/organizations/require-ssh-cert.png)
+---
+ms.openlocfilehash: abb4b47406958c1933c5c2bdf7d7e2e2c1091907
+ms.sourcegitcommit: 7a74d5796695bb21c30e4031679253cbc16ceaea
+ms.translationtype: HT
+ms.contentlocale: zh-CN
+ms.lasthandoff: 11/28/2022
+ms.locfileid: "148184039"
+---
+1. （可选）若要要求成员使用 SSH 证书，请选择“需要 SSH 证书”，然后单击“保存” 。
+    ![“需要 SSH 证书”复选框和“保存”按钮](/assets/images/help/organizations/require-ssh-cert.png)

   {% note %}

-   **Note:** When you require SSH certificates, the requirement does not apply to authorized third-party integrations or to {% data variables.product.prodname_dotcom %} features such as {% data variables.product.prodname_actions %}{% ifversion fpt or ghec %} and {% data variables.product.prodname_codespaces %}{% endif %}, which are trusted environments within the {% data variables.product.prodname_dotcom %} ecosystem.
+   注意：需要 SSH 证书时，该要求不适用于获得授权的第三方集成或 {% data variables.product.prodname_dotcom %} 功能，例如 {% data variables.product.prodname_actions %}{% ifversion fpt or ghec %} 和 {% data variables.product.prodname_codespaces %}{% endif %}，它们是 {% data variables.product.prodname_dotcom %} 生态系统中的受信任环境。

   {% endnote %}