Skip to content
Discussion options

You must be logged in to vote

Hi Nikolas! handling github api permissions is honestly such a headache especially when you're trying to keep things secure without messing with PATs.

Great catch testing out the read-all permissions by the way the reason that failed is because the /collaborators endpoint strictly needs push/write access to the repo a standard read-only token just gets blocked by it every single time.

The good news is you don't need a PAT at all and you don't even have to look at the collaborators endpoint.

Just a quick heads-up on that github changelog announcement:--> the deprecation is actually for the public Activity Events API (like when people query GET /events) not the actual webhook payloads that …

Replies: 1 comment 2 replies

Comment options

You must be logged in to vote
2 replies
@n-losse
Comment options

@n-losse
Comment options

Answer selected by n-losse
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Actions Build, test, and automate your deployment pipeline with world-class CI/CD Question Ask and answer questions about GitHub features and usage Workflow Configuration Topics about workflow files, YAML setup, job dependencies, and general workflow configuration issues Welcome 🎉 Used to greet and highlight first-time discussion participants. Welcome to the community! source:ui Discussions created via Community GitHub templates
2 participants