diff --git a/translations/es-ES/content/actions/deployment/security-hardening-your-deployments/configuring-openid-connect-in-amazon-web-services.md b/translations/es-ES/content/actions/deployment/security-hardening-your-deployments/configuring-openid-connect-in-amazon-web-services.md index 52ba90e107..9939accf88 100644 --- a/translations/es-ES/content/actions/deployment/security-hardening-your-deployments/configuring-openid-connect-in-amazon-web-services.md +++ b/translations/es-ES/content/actions/deployment/security-hardening-your-deployments/configuring-openid-connect-in-amazon-web-services.md @@ -42,7 +42,7 @@ Edit the trust relationship to add the `sub` field to the validation conditions. ```json{:copy} "Condition": { - "ForAllValues:StringEquals": { + "StringEquals": { "token.actions.githubusercontent.com:aud": "sts.amazonaws.com", "token.actions.githubusercontent.com:sub": "repo:octo-org/octo-repo:ref:refs/heads/octo-branch" } diff --git a/translations/es-ES/content/authentication/keeping-your-account-and-data-secure/reviewing-your-security-log.md b/translations/es-ES/content/authentication/keeping-your-account-and-data-secure/reviewing-your-security-log.md index 1bd2d5ccde..4463a866a6 100644 --- a/translations/es-ES/content/authentication/keeping-your-account-and-data-secure/reviewing-your-security-log.md +++ b/translations/es-ES/content/authentication/keeping-your-account-and-data-secure/reviewing-your-security-log.md @@ -166,6 +166,7 @@ Un resumen de algunas de las acciones más frecuentes que se registran como even | `create (crear)` | Se activa cuando [se crea un repositorio nuevo](/articles/creating-a-new-repository). | | `destroy (destruir)` | Se activa cuando [se elimina un repositorio](/articles/deleting-a-repository).{% ifversion fpt or ghec %} | `inhabilitar` | Se activa cuando un repositorio se inhabilita (por ejemplo, por [fondos insuficientes](/articles/unlocking-a-locked-account)).{% endif %}{% ifversion fpt or ghec %} +| `download_zip` | Triggered when a ZIP or TAR archive of a repository is downloaded. | | `habilitar` | Se activa cuando se vuelve a habilitar un repositorio.{% endif %} | `remove_member (eliminar miembro)` | Se activa cuando se elimina {% data variables.product.product_name %} un usuario [de un repositorio como colaborador](/articles/removing-a-collaborator-from-a-personal-repository). | | `remove_topic (eliminar tema)` | Se activa cuando un propietario del repositorio elimina un tema de un repositorio. | diff --git a/translations/es-ES/content/code-security/secret-scanning/protecting-pushes-with-secret-scanning.md b/translations/es-ES/content/code-security/secret-scanning/protecting-pushes-with-secret-scanning.md index ffbb6e4711..dd2f557759 100644 --- a/translations/es-ES/content/code-security/secret-scanning/protecting-pushes-with-secret-scanning.md +++ b/translations/es-ES/content/code-security/secret-scanning/protecting-pushes-with-secret-scanning.md @@ -32,7 +32,7 @@ Up to now, {% data variables.product.prodname_secret_scanning_GHAS %} checks for For you to use {% data variables.product.prodname_secret_scanning %} as a push protection, the organization or repository needs to have both {% data variables.product.prodname_GH_advanced_security %} and {% data variables.product.prodname_secret_scanning %} enabled. Para obtener más información, consulta las secciones "[Administrar los ajustes de seguridad y análisis de tu organización](/organizations/keeping-your-organization-secure/managing-security-and-analysis-settings-for-your-organization)", "[Administrar los ajustes de seguridad y análisis de tu repositorio](/repositories/managing-your-repositorys-settings-and-features/enabling-features-for-your-repository/managing-security-and-analysis-settings-for-your-repository)" y "[Acerca de la {% data variables.product.prodname_GH_advanced_security %}](/get-started/learning-about-github/about-github-advanced-security)". -Organization owners, security managers, and repository administrators can enable push protection for {% data variables.product.prodname_secret_scanning %} via the UI and API. For more information, see "[Repositories](/rest/reference/repos#update-a-repository)" and expand the "Properties of the `security_and_analysis` object" section in the REST API documentation. +Organization owners, security managers, and repository administrators can enable push protection for {% data variables.product.prodname_secret_scanning %} via the UI and API. Para obtener más información, consulta la sección "[Repositorios](/rest/reference/repos#update-a-repository)" y expande la sección de "Propiedades del objeto `security_and_analysis`" en la documentación de la API de REST. ### Enabling {% data variables.product.prodname_secret_scanning %} as a push protection for an organization @@ -76,12 +76,39 @@ If {% data variables.product.prodname_dotcom %} blocks a secret that you believe If you confirm a secret is real and that you intend to fix it later, you should aim to remediate the secret as soon as possible. For example, you might revoke the secret and remove the secret from the repository's commit history. For more information, see "[Removing sensitive data from a repository](/authentication/keeping-your-account-and-data-secure/removing-sensitive-data-from-a-repository)." -When you allow a secret to be pushed, an alert is created in the "Security" tab. The alert is closed and no notifications are sent if you specify that the secret is a false positive or used only in tests. If you specify that the secret is real and that you will fix it later, the security alert remains open and notifications are sent to the author of the commit and repository administrators. For more information, see "[Managing alerts from secret scanning](/code-security/secret-scanning/managing-alerts-from-secret-scanning)." +{% data reusables.secret-scanning.push-protection-allow-secrets-alerts %} 1. Visit the URL returned by {% data variables.product.prodname_dotcom %} when your push was blocked. ![Screenshot showing form with options for unblocking the push of a secret](/assets/images/help/repository/secret-scanning-unblock-form.png) -2. Choose the option that best describes why you should be able to push the secret. - - If the secret is only used in tests and poses no threat, click **It's used in tests**. - - If the detected string is not a secret, click **It's a false positive**. - - If the secret is real but you intend to fix it later, click **I'll fix it later**. -3. Click **Allow me to push this secret**. -4. Reattempt the push on the command line within three hours. If you have not pushed within three hours, you will need to repeat this process. +{% data reusables.secret-scanning.push-protection-choose-allow-secret-options %} +1. Click **Allow me to push this secret**. +2. Reattempt the push on the command line within three hours. If you have not pushed within three hours, you will need to repeat this process. + +{% if secret-scanning-push-protection-web-ui %} +## Using secret scanning as a push protection from the web UI + +When you use the web UI to attempt to commit a supported secret to a repository or organization with secret scanning as a push protection enabled, {% data variables.product.prodname_dotcom %} will block the commit. You will see a banner at the top of the page with information about the secret's location, and the secret will also be underlined in the file so you can easily find it. + + ![Screenshot showing commit in web ui blocked because of secret scanning push protection](/assets/images/help/repository/secret-scanning-push-protection-web-ui-commit-blocked-banner.png) + +{% data variables.product.prodname_dotcom %} will only display one detected secret at a time in the web UI. If a particular secret has already been detected in the repository and an alert already exists, {% data variables.product.prodname_dotcom %} will not block that secret. + +You can remove the secret from the file using the web UI. Once you remove the secret, the banner at the top of the page will change and tell you that you can now commit your changes. + + ![Screenshot showing commit in web ui allowed after secret fixed](/assets/images/help/repository/secret-scanning-push-protection-web-ui-commit-allowed.png) + +### Bypassing push protection for a secret + +If {% data variables.product.prodname_dotcom %} blocks a secret that you believe is safe to push, you can allow the secret and specify the reason why it should be allowed. If you confirm a secret is real and that you intend to fix it later, you should aim to remediate the secret as soon as possible. + +{% data reusables.secret-scanning.push-protection-allow-secrets-alerts %} + +If you confirm a secret is real and that you intend to fix it later, you should aim to remediate the secret as soon as possible. + +1. In the banner that appeared at the top of the page when {% data variables.product.prodname_dotcom %} blocked your commit, click **Bypass protection**. +{% data reusables.secret-scanning.push-protection-choose-allow-secret-options %} + + ![Screenshot showing form with options for unblocking the push of a secret](/assets/images/help/repository/secret-scanning-push-protection-web-ui-allow-secret-options.png) + +1. Click **Allow secret**. + +{% endif %} diff --git a/translations/es-ES/content/rest/collaborators/collaborators.md b/translations/es-ES/content/rest/collaborators/collaborators.md index baa91c2713..8d7ab7ceea 100644 --- a/translations/es-ES/content/rest/collaborators/collaborators.md +++ b/translations/es-ES/content/rest/collaborators/collaborators.md @@ -1,6 +1,6 @@ --- title: Colaboradores -intro: 'La API de colaboradores te permite agregar, invitar y eliminar colaboradores de un repositorio.' +intro: The Collaborators API allows you manage collaborators for a repository. versions: fpt: '*' ghes: '*' diff --git a/translations/es-ES/content/rest/collaborators/invitations.md b/translations/es-ES/content/rest/collaborators/invitations.md index f7083db228..bbe76b6eaa 100644 --- a/translations/es-ES/content/rest/collaborators/invitations.md +++ b/translations/es-ES/content/rest/collaborators/invitations.md @@ -1,6 +1,8 @@ --- -title: Invitaciones -intro: La API de Invitaciones al Repositorio permite a los usuarios o a los servicios externos invitar a otros usuarios para colaborar en un repositorio. +title: Repository invitations +allowTitleToDifferFromFilename: true +shortTitle: Invitaciones +intro: The Repository invitations API allows you to view and manage invitations to collaborate on a repository. versions: fpt: '*' ghes: '*' @@ -11,10 +13,10 @@ topics: miniTocMaxHeadingLevel: 3 --- -Los usuarios invitados (o los servicios externos en nombre de estos) pueden elegir aceptar o rechazar la invitación. +## About the Repository invitations API + +The Repository invitations API allows you to view and manage invitations to collaborate on a repository. Los usuarios invitados (o los servicios externos en nombre de estos) pueden elegir aceptar o rechazar la invitación. + +To add a user as a collaborator, use the Collaborators API instead. Para obtener más información, consulta la sección "[Agregar un colaborador del repositorio](/rest/collaborators/collaborators#add-a-repository-collaborator)". Toma en cuenta que el [alcance de OAuth](/developers/apps/scopes-for-oauth-apps) `repo:invite` otorga un acceso dirigido a las invitaciones **sin** otorgar también el acceso al código del repositorio, mientras que el alcance `repo` otorga permisos para el código así como para las invitaciones. - -### Invitar a un usuario a un repositorio - -Utiliza la terminal de la API para agregar un colaborador. Para obtener más información, consulta la sección "[Agregar un colaborador del repositorio](/rest/collaborators/collaborators#add-a-repository-collaborator)". diff --git a/translations/es-ES/content/rest/metrics/community.md b/translations/es-ES/content/rest/metrics/community.md index c3c7c27d15..e6e3f7d92f 100644 --- a/translations/es-ES/content/rest/metrics/community.md +++ b/translations/es-ES/content/rest/metrics/community.md @@ -1,6 +1,8 @@ --- -title: Comunidad -intro: '' +title: Community metrics +shortTitle: Comunidad +allowTitleToDifferFromFilename: true +intro: The Community metrics API lets you get data about your community profile. versions: fpt: '*' ghec: '*' diff --git a/translations/es-ES/content/rest/metrics/statistics.md b/translations/es-ES/content/rest/metrics/statistics.md index 94ece56640..de3d6c540c 100644 --- a/translations/es-ES/content/rest/metrics/statistics.md +++ b/translations/es-ES/content/rest/metrics/statistics.md @@ -1,6 +1,8 @@ --- -title: Estadísticas -intro: 'The Repository Statistics API allows you to fetch the data that {% data variables.product.product_name %} uses for visualizing different types of repository activity.' +title: Repository statistics +shortTitle: Estadísticas +allowTitleToDifferFromFilename: true +intro: 'The Repository statistics API allows you to fetch the data that {% data variables.product.product_name %} uses for visualizing different types of repository activity.' versions: fpt: '*' ghes: '*' @@ -11,6 +13,10 @@ topics: miniTocMaxHeadingLevel: 3 --- +## About the Repository statistics API + +The Repository statistics API allows you to fetch the data that {% data variables.product.product_name %} uses for visualizing different types of repository activity. + ### Unas palabras sobre el almacenamiento en caché El calcular las estadísitcas del repositorio es una operación costosa, así que intentamos devolver los datos almacenados en caché cuando nos es posible. Si los datos no se han almacenado en caché cuando consultas la estadística de un repositorio, recibirás una respuesta `202`; también se dispara un job en segundo plano para comenzar a compilar estas estadísticas. Permite que el job se complete, y luego emite la solicitud nuevamente. Si el job ya terminó, esa solicitud recibirá una respuesta `200` con la estadística en el cuerpo de la respuesta. diff --git a/translations/es-ES/content/rest/metrics/traffic.md b/translations/es-ES/content/rest/metrics/traffic.md index 30d4af1004..05d5337041 100644 --- a/translations/es-ES/content/rest/metrics/traffic.md +++ b/translations/es-ES/content/rest/metrics/traffic.md @@ -1,6 +1,8 @@ --- -title: Tráfico -intro: 'For repositories that you have push access to, the traffic API provides access to the information provided in your repository graph.' +title: Repository traffic +shortTitle: Tráfico +allowTitleToDifferFromFilename: true +intro: The Repository traffic API provides access to the information provided in your repository graph. versions: fpt: '*' ghec: '*' @@ -9,4 +11,6 @@ topics: miniTocMaxHeadingLevel: 3 --- -Para obtener más información, consulta la sección "Ver el tráfico hacia un repositorio". +## About the Repository traffic API + +For repositories that you have push access to, the Repository traffic API provides access to the information provided in your repository graph. Para obtener más información, consulta la sección "[Ver el tráfico hacia un repositorio](/repositories/viewing-activity-and-data-for-your-repository/viewing-traffic-to-a-repository)". diff --git a/translations/es-ES/data/features/secret-scanning-push-protection-web-ui.yml b/translations/es-ES/data/features/secret-scanning-push-protection-web-ui.yml new file mode 100644 index 0000000000..85053a8127 --- /dev/null +++ b/translations/es-ES/data/features/secret-scanning-push-protection-web-ui.yml @@ -0,0 +1,7 @@ +--- +#Reference: #6788. +#Documentation for secret scanning as a push protection in the web ui (as opposed to command line) +versions: + ghes: '>=3.6' + ghae: 'issue-6788' + ghec: '*' diff --git a/translations/es-ES/data/reusables/actions/self-hosted-runner-security.md b/translations/es-ES/data/reusables/actions/self-hosted-runner-security.md index 6fcaa4b256..5fe443585b 100644 --- a/translations/es-ES/data/reusables/actions/self-hosted-runner-security.md +++ b/translations/es-ES/data/reusables/actions/self-hosted-runner-security.md @@ -1 +1,5 @@ Te recomendamos que solo utilices los ejecutores auto-hospedados con los repositorios privados. Esto se debe a que tu repositorio podría ejecutar código peligroso en tu máquina de ejecutor auto-hospedado potencialmente al crear una solicitud de cambios que excluya el código en un flujo de trabajo. + +{%- ifversion fpt or ghec %} +To help mitigate this risk for public repositories, you can require approvals for workflow runs from first-time contributors. Para obtener más información, consulta la sección "[Aprobar flujos de trabajo desde bifurcaciones públicas](/actions/managing-workflow-runs/approving-workflow-runs-from-public-forks)". +{%- endif %} \ No newline at end of file diff --git a/translations/es-ES/data/reusables/secret-scanning/push-protection-allow-secrets-alerts.md b/translations/es-ES/data/reusables/secret-scanning/push-protection-allow-secrets-alerts.md new file mode 100644 index 0000000000..0df7648cba --- /dev/null +++ b/translations/es-ES/data/reusables/secret-scanning/push-protection-allow-secrets-alerts.md @@ -0,0 +1 @@ +When you allow a secret to be pushed, an alert is created in the "Security" tab. {% data variables.product.prodname_dotcom %} closes the alert and doesn't send a notification if you specify that the secret is a false positive or used only in tests. If you specify that the secret is real and that you will fix it later, {% data variables.product.prodname_dotcom %} keeps the security alert open and sends notifications to the author of the commit, as well as to repository administrators. Para obtener más información, consulta la sección "[Administrar alertas del escaneo de secretos](/code-security/secret-scanning/managing-alerts-from-secret-scanning)." \ No newline at end of file diff --git a/translations/es-ES/data/reusables/secret-scanning/push-protection-choose-allow-secret-options.md b/translations/es-ES/data/reusables/secret-scanning/push-protection-choose-allow-secret-options.md new file mode 100644 index 0000000000..b75aea7a26 --- /dev/null +++ b/translations/es-ES/data/reusables/secret-scanning/push-protection-choose-allow-secret-options.md @@ -0,0 +1,4 @@ +2. Choose the option that best describes why you should be able to push the secret. + - If the secret is only used in tests and poses no threat, click **It's used in tests**. + - If the detected string is not a secret, click **It's a false positive**. + - If the secret is real but you intend to fix it later, click **I'll fix it later**. \ No newline at end of file