From 40e4039f16c3d000a2313871069f7ab710f12d21 Mon Sep 17 00:00:00 2001 From: docs-bot <77750099+docs-bot@users.noreply.github.com> Date: Tue, 13 May 2025 16:47:40 -0700 Subject: [PATCH] Update audit log event data (#55625) Co-authored-by: Joe Clark <31087804+jc-clark@users.noreply.github.com> --- src/audit-logs/data/fpt/organization.json | 17 ++++++++++++++++- src/audit-logs/data/ghec/enterprise.json | 12 +++++++++++- src/audit-logs/data/ghec/organization.json | 17 ++++++++++++++++- src/audit-logs/data/ghes-3.17/organization.json | 2 +- src/audit-logs/lib/config.json | 2 +- 5 files changed, 45 insertions(+), 5 deletions(-) diff --git a/src/audit-logs/data/fpt/organization.json b/src/audit-logs/data/fpt/organization.json index 7f73197056..da93cbcd10 100644 --- a/src/audit-logs/data/fpt/organization.json +++ b/src/audit-logs/data/fpt/organization.json @@ -994,6 +994,11 @@ "description": "A billing manager was added to an organization.", "docs_reference_links": "/organizations/managing-peoples-access-to-your-organization-with-roles/adding-a-billing-manager-to-your-organization" }, + { + "action": "org.add_disallowed_two_factor_method", + "description": "An organization prevented access to resources by users with the given two-factor method.", + "docs_reference_links": "N/A" + }, { "action": "org.add_member", "description": "A user joined an organization.", @@ -1094,6 +1099,11 @@ "description": "N/A", "docs_reference_links": "N/A" }, + { + "action": "org.clear_disallowed_two_factor_methods", + "description": "Cleared two-factor authentication restrictions for an organization.", + "docs_reference_links": "N/A" + }, { "action": "org.code_scanning_autofix_disabled", "description": "Autofix for code scanning alerts was disabled for an organization.", @@ -1429,6 +1439,11 @@ "description": "A billing manager was removed from an organization, either manually or due to a two-factor authentication requirement.", "docs_reference_links": "/organizations/managing-peoples-access-to-your-organization-with-roles/removing-a-billing-manager-from-your-organization, /organizations/keeping-your-organization-secure/managing-two-factor-authentication-for-your-organization/requiring-two-factor-authentication-in-your-organization" }, + { + "action": "org.remove_disallowed_two_factor_method", + "description": "Removed a two-factor authentication method restriction for an organization.", + "docs_reference_links": "N/A" + }, { "action": "org.remove_integration_secret", "description": "A Codespaces or Dependabot secret was removed from an organization.", @@ -3227,7 +3242,7 @@ { "action": "secret_scanning_closure_request.cancel", "description": "N/A", - "docs_reference_links": "A request to close a secret scanning alert was canceled by a user." + "docs_reference_links": "A reqeust to close a secret scanning alert was canceled by a user." }, { "action": "secret_scanning_closure_request.create", diff --git a/src/audit-logs/data/ghec/enterprise.json b/src/audit-logs/data/ghec/enterprise.json index ffc5b99307..b2c5c436ba 100644 --- a/src/audit-logs/data/ghec/enterprise.json +++ b/src/audit-logs/data/ghec/enterprise.json @@ -109,6 +109,11 @@ "description": "A billing manager was added to an enterprise.", "docs_reference_links": "N/A" }, + { + "action": "business.add_disallowed_two_factor_method", + "description": "An enterprise prevented access to resources by users with the given two-factor method.", + "docs_reference_links": "N/A" + }, { "action": "business.add_organization", "description": "An organization was added to an enterprise.", @@ -424,6 +429,11 @@ "description": "A billing manager was removed from an enterprise.", "docs_reference_links": "N/A" }, + { + "action": "business.remove_disallowed_two_factor_method", + "description": "Removed a two-factor authentication method restriction for an enterprise.", + "docs_reference_links": "N/A" + }, { "action": "business.remove_member", "description": "A member was removed from an enterprise.", @@ -3982,7 +3992,7 @@ { "action": "secret_scanning_closure_request.cancel", "description": "N/A", - "docs_reference_links": "A request to close a secret scanning alert was canceled by a user." + "docs_reference_links": "A reqeust to close a secret scanning alert was canceled by a user." }, { "action": "secret_scanning_closure_request.create", diff --git a/src/audit-logs/data/ghec/organization.json b/src/audit-logs/data/ghec/organization.json index 7f73197056..da93cbcd10 100644 --- a/src/audit-logs/data/ghec/organization.json +++ b/src/audit-logs/data/ghec/organization.json @@ -994,6 +994,11 @@ "description": "A billing manager was added to an organization.", "docs_reference_links": "/organizations/managing-peoples-access-to-your-organization-with-roles/adding-a-billing-manager-to-your-organization" }, + { + "action": "org.add_disallowed_two_factor_method", + "description": "An organization prevented access to resources by users with the given two-factor method.", + "docs_reference_links": "N/A" + }, { "action": "org.add_member", "description": "A user joined an organization.", @@ -1094,6 +1099,11 @@ "description": "N/A", "docs_reference_links": "N/A" }, + { + "action": "org.clear_disallowed_two_factor_methods", + "description": "Cleared two-factor authentication restrictions for an organization.", + "docs_reference_links": "N/A" + }, { "action": "org.code_scanning_autofix_disabled", "description": "Autofix for code scanning alerts was disabled for an organization.", @@ -1429,6 +1439,11 @@ "description": "A billing manager was removed from an organization, either manually or due to a two-factor authentication requirement.", "docs_reference_links": "/organizations/managing-peoples-access-to-your-organization-with-roles/removing-a-billing-manager-from-your-organization, /organizations/keeping-your-organization-secure/managing-two-factor-authentication-for-your-organization/requiring-two-factor-authentication-in-your-organization" }, + { + "action": "org.remove_disallowed_two_factor_method", + "description": "Removed a two-factor authentication method restriction for an organization.", + "docs_reference_links": "N/A" + }, { "action": "org.remove_integration_secret", "description": "A Codespaces or Dependabot secret was removed from an organization.", @@ -3227,7 +3242,7 @@ { "action": "secret_scanning_closure_request.cancel", "description": "N/A", - "docs_reference_links": "A request to close a secret scanning alert was canceled by a user." + "docs_reference_links": "A reqeust to close a secret scanning alert was canceled by a user." }, { "action": "secret_scanning_closure_request.create", diff --git a/src/audit-logs/data/ghes-3.17/organization.json b/src/audit-logs/data/ghes-3.17/organization.json index de0b1ffe78..6fd075df94 100644 --- a/src/audit-logs/data/ghes-3.17/organization.json +++ b/src/audit-logs/data/ghes-3.17/organization.json @@ -3182,7 +3182,7 @@ { "action": "secret_scanning_closure_request.cancel", "description": "N/A", - "docs_reference_links": "A request to close a secret scanning alert was canceled by a user." + "docs_reference_links": "A reqeust to close a secret scanning alert was canceled by a user." }, { "action": "secret_scanning_closure_request.create", diff --git a/src/audit-logs/lib/config.json b/src/audit-logs/lib/config.json index abe5881777..ec1be5d659 100644 --- a/src/audit-logs/lib/config.json +++ b/src/audit-logs/lib/config.json @@ -3,5 +3,5 @@ "apiOnlyEvents": "This event is not available in the web interface, only via the REST API, audit log streaming, or JSON/CSV exports.", "apiRequestEvent": "This event is only available via audit log streaming." }, - "sha": "ff3e90a228450595711a45a63b9c764db5ed3a00" + "sha": "5649c28c98e5a831c75008d7c1ced9e6e58306ea" } \ No newline at end of file