jprdonnelly/docs
1
0
Fork 0
mirror of synced 2026-01-06 06:02:35 -05:00
Code Issues Projects Releases Wiki Activity
12,343 Commits 28 Branches 1 Tag
44ff4e7dc039346bf438bd02cf44be8d30f46db6
Commit Graph

29 Commits

Author SHA1 Message Date
Rachael Sewell
7398c30364 remove 2.21 markup (#20954) 2021-08-19 18:18:00 +00:00
Martin Lopes
6ebff84631 New audit log events for self-hosted runners (GA) (#20268) 
Co-authored-by: Laura Coursen <lecoursen@github.com>
 2021-08-05 09:45:01 +10:00
Martin Lopes
95e23dcf5e Update versioning for self-hosted runner events (#20466) 2021-07-22 16:42:29 +10:00
Meg Bird
476e7b1cbc Update content/actions/learn-github-actions/security-hardening-for-github-actions.md 2021-06-28 08:10:51 -06:00
Boleyn Su
2b64a88070 Add another possible attack surface for self hosted runners 2021-06-26 19:24:10 -04:00
Sarah Schneider
cb12455649 ran script/content-migrations/use-short-versions.js 2021-06-24 10:21:07 -04:00
Grace Park
6f7e4f50dc updating content files 2021-06-14 12:06:52 -07:00
Martin Lopes
c34031a583 Keep Actions docs up to date with security practices (#19076) 
* Update security-hardening-for-github-actions.md

Co-authored-by: Lucas Costi <lucascosti@users.noreply.github.com>
Co-authored-by: Jaroslav Lobačevski <jarlob@github.com>
 2021-05-25 22:26:51 +10:00
Sarah Edwards
321c8ec8ae add note about environments on self-hosted runners (#19246) 
Co-authored-by: Martin Lopes <martin389@github.com>
 2021-05-11 15:05:02 +00:00
Rachael Sewell
a926da8b08 Update topics to sentence case (#19069) 2021-04-30 19:30:36 -07:00
hubwriter
de28b750d1 Configure GITHUB_TOKEN permissions (#18348) 
* Add 'permissions' to reference page

* Final set of pre-review changes

* Update content/actions/learn-github-actions/security-hardening-for-github-actions.md

Co-authored-by: Sarah Edwards <skedwards88@github.com>

* Update content/actions/reference/authentication-in-a-workflow.md

Co-authored-by: Sarah Edwards <skedwards88@github.com>

* Update content/actions/reference/authentication-in-a-workflow.md

Co-authored-by: Sarah Edwards <skedwards88@github.com>

* Update content/actions/reference/authentication-in-a-workflow.md

Co-authored-by: Sarah Edwards <skedwards88@github.com>

* Update content/actions/reference/authentication-in-a-workflow.md

Co-authored-by: Sarah Edwards <skedwards88@github.com>

* Update data/reusables/github-actions/workflow-permissions-intro.md

Co-authored-by: Sarah Edwards <skedwards88@github.com>

* Update content/actions/reference/authentication-in-a-workflow.md

Co-authored-by: Sarah Edwards <skedwards88@github.com>

* Update content/actions/reference/authentication-in-a-workflow.md

Co-authored-by: Sarah Edwards <skedwards88@github.com>

* Update data/reusables/github-actions/publish-to-packages-workflow-step.md

Co-authored-by: Sarah Edwards <skedwards88@github.com>

* Update content/actions/guides/publishing-nodejs-packages.md

* Update content/actions/guides/publishing-java-packages-with-gradle.md

* Update content/actions/guides/publishing-java-packages-with-maven.md

* Update content/actions/guides/publishing-nodejs-packages.md

* Update content/actions/reference/authentication-in-a-workflow.md

* Update content/actions/reference/authentication-in-a-workflow.md

* Update content/actions/reference/authentication-in-a-workflow.md

* Update content/actions/reference/authentication-in-a-workflow.md

* Update content/actions/learn-github-actions/security-hardening-for-github-actions.md

* Update content/actions/reference/authentication-in-a-workflow.md

* Update content/actions/reference/workflow-syntax-for-github-actions.md

* Update content/actions/reference/workflow-syntax-for-github-actions.md

* Update content/actions/reference/workflow-syntax-for-github-actions.md

* Update content/github/administering-a-repository/disabling-or-limiting-github-actions-for-a-repository.md

* Update content/github/setting-up-and-managing-organizations-and-teams/disabling-or-limiting-github-actions-for-your-organization.md

* Update content/github/setting-up-and-managing-your-enterprise/enforcing-github-actions-policies-in-your-enterprise-account.md

* Update content/packages/guides/using-github-packages-with-github-actions.md

* Make review comment changes (locally)

* Resolve conflicts caused by remotely made review changes

* Remove translation file changes from PR.

* Remove rogue indentation in Important box

* Remove sentence about default being set to restricted.

This *will* be the case for new repos in future,
but that isn't being shipped at the moment.

* Add permissions to workflow examples (#18393)

Co-authored-by: Sarah Edwards <skedwards88@github.com>
 2021-04-20 15:49:38 +00:00
Emily Gould
bcfe4dab3b Make orgs and teams content a top-level doc set (#18593) 
* Add new product to products.yml

* Move directory to its new location and rename it

* Update new index page

* Remove old category from GitHub product index

* Add collaboration category

* Add membership category

* Add roles category

* Add teams category

* Add team discussion category

* Add repo access category

* Add project board access category

* Add app management category

* Add org settings category

* Add improved org perms category

* Add category for OAuth app restrictions

* Add org security category

* Add SAML category

* Add SAML access category

* Add git access category

* Add redirects and update links for collaboration category

* Add redirects and update links to team discussions content

* Add redirects and update links to SAML access category

* Update links to org security category and add redirects

* Add redirects for app managers content

* Add redirects for project board category

* Add redirects and update links for the repo access category

* Add redirects for git access category

* Add redirects and update links for membership category

* Add redirects and update links for org settings category

* Fix links

* Add redirects and update links to org access category

* Add redirects and upate links to SSO category

* Add redirects to improved org perms category

* Add redirects and update links to teams category

* Add redirects and update links to oauth apps category

* Fix links

* Fix links

* Fix links
 2021-04-08 09:50:13 -05:00
Darius Wiles
aa165ea8f3 Fix minor grammar "helps the minimize risks" 2021-03-19 09:25:30 -07:00
Martin Lopes
f2d8ccb712 Add missing Audit Log events for GitHub Actions (#17616) 
* Added placeholders for missing events.

* Added Audit events

* Moved event

* Fixed links

* Fixed links

* Fixed versioning

* Rephrased description

* Revised description of runner_group_runners_updated

* Added versioning updates, future-proofing.

* Update based on tech review

* Apply suggestions from code review

Co-authored-by: Laura Coursen <lecoursen@github.com>

* Apply suggestions from code review

Co-authored-by: Laura Coursen <lecoursen@github.com>

* Added link for runner_group_updated event

* Apply suggestions from code review

Co-authored-by: Laura Coursen <lecoursen@github.com>

* Clarified description of `runner_group_runner_removed`

* Removed link for enterprise versions of event.

* Update security-hardening-for-github-actions.md

* Update actions-audit-events-workflow.md

Co-authored-by: Laura Coursen <lecoursen@github.com>
 2021-03-17 10:59:43 +10:00
Rami Zackary Shamir
b963d7c471 Issue #4283 rewording section 
Issue #4283 
Line 80 has been changed from 

Users have specific permissions for each repository, so having the GITHUB_TOKEN for one repository grant access to another would impact the GitHub permission model if not implemented carefully.

to

Users have specific permissions for each repository, so allowing the GITHUB_TOKEN for one repository to grant access to another would impact the GitHub permission model if not implemented carefully.
 2021-03-05 07:30:44 -05:00
Fuxing Loh
77f57687df Update security-hardening-for-github-actions.md 
Confusing statement, shouldn't it be {% data variables.product.prodname_actions %} instead of {% data variables.product.product_name %}?
 2021-03-04 12:38:10 +00:00
Matt Pollard
2db9da5c8f [DO NOT MERGE] GitHub AE consumables beta megabranch (#17620) 
* Empty commit

* updated beta note for GHAE

* more GHAE update + resolve conflict

* more GHAE updates + prepare for screenshots

* Apply suggestions from code review

Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>

* Apply suggestions from code review

Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>

* address remaining review comments

* Revise "About GitHub AE" (#17679)

* add screenshots to the Configuring article

* reworked to have a separate GHAE section

* list numbering

* more work on screenshots and conditions

* add GHAE screenshots in article

* review screenshots in article

* added more screenshots and updated more articles

* screenshot madness

* fix liquid versioning

* refactor the ghae script

* [GHAE CB/Feb 22]: Add article about data residency for GitHub AE (#17847)

* add missing GHAE versioning to article

* move screenshots to GHAE asset directory

* forgot to change the path for these two images

* replace CBB screenshot + add better screenshot

* [GHAE CB/Feb 22]: Document upgrades for GitHub AE (#17848)

* Version article for GitHub AE

* Replace unused variable

* Incorporate reviewer feedback

* Update intro

Co-authored-by: Ethan P <56270045+ethanpalm@users.noreply.github.com>

* [GHAE] Enable IP allow list (#17691)

* Notes for CC

* Updat permission leves chart

* Add updated article to further reading

* Update gated feature callout with GitHub AE

* Version "Managing allowed IP addresses for your organization" for AE

* Update images

* Update "Restricting network traffic to your enterprise" with new procedures

* remove todo note

* Update audited actions

* Update info about Premium Runners

* Use reusable for Premium Runners

* Change "Premium Runners" to "AE hosted runners"

* Incorporate reviewer feedback

* Use correct reusable

* Version reusable correctly

* [Feb 22] GHAE: Code scanning beta (#17830)

* Add "github-ae" to all the frontmatter

* GHAE-ify the reusables

* Add some more changes

* Re-use some content

* 🔪 Semmle links

* Revert change re "--external-repository-token" in the CodeQL runner

* Update CodeQL runner token scopes

* Update two screenshots

* Remove mention of GitHub.com from AE + other fixes

* Apply suggestions from code review

Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>

* Use `product_name` variable instead of `product_location`

* Remove confusing phrase

* [Feb 22] GHAE: Code scanning API and webhook docs (#17883)

* Version API and webhook docs

* Actually add versioning for GHAE

* Fix anchor

* [TEMPORARY] Preview for API endpoints

* Revert API previews

* Update procedure step

Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>

* Update docs for AzureAD Group SCIM support in GHAE (#17892)

* [GHAE CB] SMTP bootstrapping flow (#17888)

* draft

* update with AE conntent

* update with tons of versioning

* remove that  lie

* fill out the rest of these steps

* update with correct versioning

* more edits

* add images

* reversion most of ae article

* fix versioning

* format correctlly

* words matter

* last image

* update with permmissions

* update versioning

* add link

* apply feedback ❤️

* update with differrent spacing

* update with feedback

* more feedback

* Temporary GHAE release notes for consumables beta launch (#17859)

* Create release-notes.md

* Add frontmatter

* Add to index file

* Update github-ae-release-notes.md

* Add release notes from Google Doc

* Update finalized docs links that have been reviewed

* OAuth device flow link update

* version for AE

* few fixes

* Update content/admin/overview/github-ae-release-notes.md

* small edits

* whoops

* commit

* update with different links

* used wrong reusable

* fix more brokenness

* Update repository-references.js

* Update repository-references.js

Co-authored-by: Meg Bird <megbird@github.com>
Co-authored-by: Kevin Heis <heiskr@users.noreply.github.com>

* [GHAE] Audit public repos (#17917)

* verifying what we mean by public

* Apply suggestions from code review

* Update content/developers/apps/installing-github-apps.md

Co-authored-by: Laura Coursen <lecoursen@github.com>

* fixing placememnt of liquid conditional

Co-authored-by: Laura Coursen <lecoursen@github.com>

* GHAE packages beta (#17786)

Co-authored-by: jmarlena <6732600+jmarlena@users.noreply.github.com>
Co-authored-by: Martin Lopes <martin389@github.com>

* fix broken links

* [GHAE CB/March 01]: GitHub Actions on GHAE (beta) (#17725)

* Added initial layout for premium runners

* Restructured content

* Added placeholder for removing premium runner

* Added versioning and warning note for self-hosted runners

* Added versioning and beta notice for actions content

* Rephrased beta note

* Added versioning for API docs, fixes

* Added versioning fixes

* Split Github-hosted and premium topics into separate articles

* Added edits

* Restructured some topics

* Revised "Using premium runners in a workflow"

* Some small fixes

* Fixed typo

* Added fixes to reusable

* Added edits

* Made section titles consistent

* Added billing, group mgmt, reusable steps

* Cropped certain screenshots for future-proofing

* Removed superfluous reusable

* Added fixes

* Revert "Cropped certain screenshots for future-proofing"

This reverts commit c7f24f31fa30d4fe3de2b63fc3cd5feba44ef518.

* Added new section for custom images

* Added versioning for enterprise-admin operations

* Added edits

* Added edits

* Update adding-premium-runners.md

* Removed SHR screenshots. Intending to update them when UI is available.

* Update using-labels-with-premium-runners.md

* Added custom labels section

* Added preview of API docs changes

* Added versioning for ip allow list section

* Removed removal article

* Renamed premium runners to AE hosted runners

* Re-added added API preview

* Fixed links, updated software specs

* Revised "Software specifications" based on feedback

* Fixed typos

* Small fixes

* Added new article "Creating custom images"

* Moved "Creating custom images" link

* Apply suggestions from code review

Co-authored-by: ahdbilal <55514721+ahdbilal@users.noreply.github.com>

* Added update from review

* Added updates from tech review

* Apply suggestions from code review

Co-authored-by: ahdbilal <55514721+ahdbilal@users.noreply.github.com>

* Added updates from tech review

* Added updates from tech review

* Added updates from tech review

* Added updates from tech review

* Fixed reusable

* Added fixes

* Added update from tech review

* Removed the dereferenced OpenAPI schema files

* Added fixes

* Fixed links

* Fixed links

* Apply suggestions from code review

Co-authored-by: jmarlena <6732600+jmarlena@users.noreply.github.com>

* Added updates from peer review

* Removed sections that are not in beta

* Update viewing-your-github-actions-usage.md

* Update viewing-job-execution-time.md

* Update index.md

* Update about-github-hosted-runners.md

* Restored versioning to match GHES approach

* Fixed link

* Restored self-hosted runner reference to UI steps.

* Updated screenshots

* Updated screenshots and procedures

* Small edits to screenshots

* Added AE url info for SHR

* Removed superfluous versioning

* Update security-hardening-for-github-actions.md

* Update actions-shared.md

* Small edits

* Update usage-limits-billing-and-administration.md

* Update managing-complex-workflows.md

* Additional versioning

* Additional versioning

* version environments api and checkrun deployments for ghae (#17991)

Co-authored-by: Martin Lopes <martin389@github.com>

* Update reviewing-the-audit-log-for-your-organization.md

* Added versioning for enterprise policy settings

* version configuring artifact retention for AE

* remove AE versioning for connecting to Marketplace

* Apply suggestions from code review

Co-authored-by: Joe Bourne <thejoebourneidentity@github.com>

* Update content/admin/github-actions/getting-started-with-github-actions-for-github-ae.md

Co-authored-by: Joe Bourne <thejoebourneidentity@github.com>

* rewording not public to private

* fixing liquid

* Fixed elseif entries

* Added expectations note

* Revised label management article for AE hosted runners

* Added enterprise-admin note for adding AE hosted runners

* Update enterprise-admin.md

* Update self-hosted-runner-security.md

* Versioned reusable for AE

* Empty commit for CI

Co-authored-by: ahdbilal <55514721+ahdbilal@users.noreply.github.com>
Co-authored-by: jmarlena <6732600+jmarlena@users.noreply.github.com>
Co-authored-by: skedwards88 <skedwards88@github.com>
Co-authored-by: Leona B. Campbell <3880403+runleonarun@users.noreply.github.com>
Co-authored-by: Joe Bourne <thejoebourneidentity@github.com>
Co-authored-by: runleonarun <runleonarun@github.com>

* Update OpenAPI Descriptions for GHAE

* Update content/admin/overview/github-ae-release-notes.md

Co-authored-by: Ethan Palm <56270045+ethanpalm@users.noreply.github.com>
Co-authored-by: mchammer01 <42146119+mchammer01@users.noreply.github.com>
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
Co-authored-by: shati-patel <shati-patel@github.com>
Co-authored-by: Sarah Schneider <sarahs@github.com>
Co-authored-by: skedwards88 <skedwards88@github.com>
Co-authored-by: Sarah Schneider <sarahs@users.noreply.github.com>
Co-authored-by: Melanie Yarbrough <11952755+myarb@users.noreply.github.com>
Co-authored-by: Felicity Chapman <felicitymay@github.com>
Co-authored-by: Meg Bird <megbird@github.com>
Co-authored-by: Kevin Heis <heiskr@users.noreply.github.com>
Co-authored-by: Leona B. Campbell <3880403+runleonarun@users.noreply.github.com>
Co-authored-by: Laura Coursen <lecoursen@github.com>
Co-authored-by: jmarlena <6732600+jmarlena@users.noreply.github.com>
Co-authored-by: Martin Lopes <martin389@github.com>
Co-authored-by: ahdbilal <55514721+ahdbilal@users.noreply.github.com>
Co-authored-by: Joe Bourne <thejoebourneidentity@github.com>
Co-authored-by: runleonarun <runleonarun@github.com>
Co-authored-by: github-openapi-bot <69533958+github-openapi-bot@users.noreply.github.com>
 2021-03-01 16:07:02 -05:00
Martin Lopes
9ba81c59ca [Feb-01] [Ecosystem] Update audit log for GitHub Actions events (#17436) 
* Added “workflows” category for audit log

* Fixed table

* Updated links

* Small edits

* Added versioning

* Added entry for `self_hosted_runner_updated`

* Added repo entry for `self_hosted_runner_updated`

* Added `enterprise` category actions

* Added "starting_workflow_job"

* Update reviewing-the-audit-log-for-your-organization.md

* Added changes to security hardening guide

* Update security-hardening-for-github-actions.md

* Added versioning for "self-hosted runners" tables

* Update reviewing-the-audit-log-for-your-organization.md

* Apply suggestions from code review

Co-authored-by: Sarah Edwards <skedwards88@github.com>

* Update security-hardening-for-github-actions.md

* Update reviewing-the-audit-log-for-your-organization.md

* Update reviewing-the-audit-log-for-your-organization.md

* Update security-hardening-for-github-actions.md

* Update reviewing-the-audit-log-for-your-organization.md

* Update security-hardening-for-github-actions.md

* Update security-hardening-for-github-actions.md

* Update reviewing-the-audit-log-for-your-organization.md

* Update security-hardening-for-github-actions.md

* Update reviewing-the-audit-log-for-your-organization.md

* Update reviewing-the-audit-log-for-your-organization.md

* Update security-hardening-for-github-actions.md

* Moved enterprise events into reusable

* Added versioning to exclude AE

* Changed table identation and naming for consistency with reusable

* Update security-hardening-for-github-actions.md

* Update reviewing-the-audit-log-for-your-organization.md

* Added note to mention that certain events can only be viewed using the API.

* Added event visibility information.

* Removed superfluous description text

* Fixed typo

* Moved table into reusable

* Removed unused events superseded by `runner_group_updated`

Co-authored-by: Sarah Edwards <skedwards88@github.com>
 2021-02-23 03:06:46 +00:00
Vanessa Yuen
4038e9ca85 Add topic property and filter to guides page (#17328) 
Co-authored-by: Emily Gould <4822039+emilyistoofunky@users.noreply.github.com>
 2021-01-29 12:32:31 +00:00
Sarah Edwards
d9f0360cd5 [Do not merge until feature ship] Full length SHAs required for actions (#17293) 
Co-authored-by: Lucas Costi <lucascosti@users.noreply.github.com>
 2021-01-21 18:49:17 +00:00
Vanessa Yuen
641ed02e81 Actions Guides sublanding page (#16740) 
Co-authored-by: Emily Gould <4822039+emilyistoofunky@users.noreply.github.com>
Co-authored-by: Cynthia Rich <crichID@github.com>
 2021-01-11 18:30:57 +01:00
Sarah Edwards
af94bd9955 [December 15, 2020] Actions: Environments, environment protection rules (manual approvals and wait timers), and environment secrets in workflows (#16489) 
Co-authored-by: Josh Gross <joshmgross@github.com>
Co-authored-by: Brian Cristante <33549821+brcrista@users.noreply.github.com>
Co-authored-by: John Bohannon <imjohnbo@github.com>
Co-authored-by: Lucas Costi <lucascosti@users.noreply.github.com>
 2020-12-15 16:38:45 +00:00
Martin Lopes
97891bf48a Explain risks of org and enterprise level self-hosted runners (#16583) 
* Added notes about risks of self-hosted runners

* Apply suggestions from code review

Co-authored-by: Lucas Costi <lucascosti@users.noreply.github.com>

* Apply suggestions from code review

Co-authored-by: Lucas Costi <lucascosti@users.noreply.github.com>
 2020-12-10 03:22:07 +00:00
ajs256
dd1123b6ec Update security-hardening-for-github-actions.md (#849) 
Fix #769
 2020-11-04 12:49:18 -08:00
Nick Schonning
f4710f09c5 typo: perfomed -> performed 2020-11-04 14:38:43 -05:00
Martin Lopes
ac93257463 [Oct 23] Add audit log documentation for GitHub Actions (#16129) 
* Adds initial draft

* Updated screenshot, split large table into multiple smaller tables

* Reordered entries in reference table

* Update security-hardening-for-github-actions.md

* Removed table versioning

* Fixed versioning

* Fixed repo table versioning

* Fix table versioning

* Apply suggestions from code review

Co-authored-by: Lucas Costi <lucascosti@users.noreply.github.com>

* Added link

Co-authored-by: Lucas Costi <lucascosti@users.noreply.github.com>
 2020-10-23 16:11:40 +10:00
Matt Pollard
aa3a4edb62 Document features and changes for phase 2.5 of master/main transition (#15745) 2020-10-01 16:43:01 -07:00
Jason Etcovitch
caaee7a124 Update all files to use {% data %} (#15253) 
* Add back changes from prior to purge

* Manually fix some invalid Liquid

* Updoot render-content

* Improve test messages to show correct output

* Run el scripto

* Pass the remaining test
 2020-09-29 16:01:04 -04:00
Vanessa Yuen
3df90fc9b8 Hello git history spelunker! 
Are you looking for something? Here is all of the GitHub Docs history in one single commit. Enjoy! 🎉
 2020-09-27 14:10:11 +02:00