{"id":14986081,"url":"https://github.com/actionsdesk/github-actions-allow-list-as-code-action","last_synced_at":"2025-08-03T15:42:46.395Z","repository":{"id":39082142,"uuid":"371279024","full_name":"ActionsDesk/github-actions-allow-list-as-code-action","owner":"ActionsDesk","description":"Automate GitHub Actions allow list for GitHub Enterprise Cloud accounts","archived":false,"fork":false,"pushed_at":"2025-04-01T11:58:59.000Z","size":1529,"stargazers_count":16,"open_issues_count":2,"forks_count":6,"subscribers_count":3,"default_branch":"main","last_synced_at":"2025-04-10T10:11:23.986Z","etag":null,"topics":["automation","github-actions","github-enterprise-cloud","policy-as-code"],"latest_commit_sha":null,"homepage":"","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/ActionsDesk.png","metadata":{"files":{"readme":"readme.md","changelog":null,"contributing":".github/contributing.md","funding":null,"license":"license","code_of_conduct":".github/code_of_conduct.md","threat_model":null,"audit":null,"citation":null,"codeowners":".github/codeowners","security":".github/security.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2021-05-27T07:07:46.000Z","updated_at":"2025-04-09T10:18:39.000Z","dependencies_parsed_at":"2024-02-15T08:32:47.301Z","dependency_job_id":"89f85e0c-1ec9-4403-bfea-4e3826fd3b16","html_url":"https://github.com/ActionsDesk/github-actions-allow-list-as-code-action","commit_stats":{"total_commits":110,"total_committers":4,"mean_commits":27.5,"dds":0.3909090909090909,"last_synced_commit":"75d3170150cab7ed5d7efb9e2e238a47ab73a207"},"previous_names":[],"tags_count":13,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ActionsDesk%2Fgithub-actions-allow-list-as-code-action","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ActionsDesk%2Fgithub-actions-allow-list-as-code-action/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ActionsDesk%2Fgithub-actions-allow-list-as-code-action/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ActionsDesk%2Fgithub-actions-allow-list-as-code-action/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/ActionsDesk","download_url":"https://codeload.github.com/ActionsDesk/github-actions-allow-list-as-code-action/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248476381,"owners_count":21110266,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["automation","github-actions","github-enterprise-cloud","policy-as-code"],"created_at":"2024-09-24T14:12:17.860Z","updated_at":"2025-04-11T20:32:00.328Z","avatar_url":"https://github.com/ActionsDesk.png","language":"JavaScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"# github-actions-allow-list-as-code-action\n\n\u003e Automate GitHub Actions allow list for GitHub Enterprise accounts\n\n[![test](https://github.com/ActionsDesk/github-actions-allow-list-as-code-action/actions/workflows/test.yml/badge.svg)](https://github.com/ActionsDesk/github-actions-allow-list-as-code-action/actions/workflows/test.yml) [![CodeQL](https://github.com/ActionsDesk/github-actions-allow-list-as-code-action/actions/workflows/github-code-scanning/codeql/badge.svg)](https://github.com/ActionsDesk/github-actions-allow-list-as-code-action/actions/workflows/github-code-scanning/codeql) [![styled with prettier](https://img.shields.io/badge/styled_with-prettier-ff69b4.svg)](https://github.com/prettier/prettier)\n\n## Usage\n\n```yml\nname: Deploy GitHub Actions allow list\n\non:\n push:\n branches: [main]\n paths: [github-actions-allow-list.yml]\n\njobs:\n deploy:\n runs-on: ubuntu-latest\n\n permissions: read-all\n\n steps:\n - name: Checkout\n uses: actions/checkout@v2.3.4\n\n - name: Setup node\n uses: actions/setup-node@v2.1.5\n with:\n node-version: 14.x\n\n - name: Deploy GitHub Actions allow list\n uses: ActionsDesk/github-actions-allow-list-as-code-action@v1.1.2\n with:\n token: ${{ secrets.ENTERPRISE_ADMIN_TOKEN }}\n enterprise: 'your-enterprise'\n # same as defined under `on.pull_requests.paths`\n allow_list_path: github-actions-allow-list.yml\n # gh_api_url: 'https://github.example.com/api/v3' # Only required for GitHub Enterprise Server\n```\n\n### Action Inputs\n\n| Name | Description | Default | Required |\n| :---------------- | :--------------------------------------------------------------------------------------------------------------- | :------------------------------ | :------- |\n| `token` | GitHub Personal Access Token ([PAT]) with `admin:enterprise` or `admin:org` scope | | `true` |\n| `organization` | GitHub organization slug | | `false` |\n| `enterprise` | GitHub Enterprise account slug | | `false` |\n| `allow_list_path` | Path to the GitHub Actions allow list YML within the repository | `github-actions-allow-list.yml` | `false` |\n| `gh_api_url` | GitHub Enterprise Servier - URL to the GitHub API endpoint. \u003cbr /\u003e Example: `https://github.example.com/api/v3.` | `https://api.github.com` | `false` |\n\nℹ️ Notes for providing `enterprise` or `organization`:\n\n- Either provide `enterprise` to update the [GitHub Enterprise Cloud's actions allow list](https://docs.github.com/en/github/setting-up-and-managing-your-enterprise/setting-policies-for-organizations-in-your-enterprise-account/enforcing-github-actions-policies-in-your-enterprise-account#allowing-specific-actions-to-run), or `organization` to update a single [organization's allow list](https://docs.github.com/en/organizations/managing-organization-settings/disabling-or-limiting-github-actions-for-your-organization#allowing-specific-actions-to-run).\n- Providing both will result in the action run failing with `Please provide only one of: enterprise, organization`.\n- If providing `organization`, but the allow list is handled via [GitHub Enterprise Cloud's actions allow list](https://docs.github.com/en/github/setting-up-and-managing-your-enterprise/setting-policies-for-organizations-in-your-enterprise-account/enforcing-github-actions-policies-in-your-enterprise-account#allowing-specific-actions-to-run), the action run will fail with `Selected actions are already set at the enterprise level`.\n\n## Allow List file\n\nExample content for Allow List file containing `actions:` key and list with two allowed actions.\n\n```yml\nactions:\n - actionsdesk/github-actions-allow-list-as-code-action@v1.1.2\n - hashicorp/vault-action@v2.4.0\n```\n\n## License\n\n- [MIT License](./license)\n\n[pat]: https://docs.github.com/en/github/authenticating-to-github/creating-a-personal-access-token 'Personal Access Token'\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Factionsdesk%2Fgithub-actions-allow-list-as-code-action","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Factionsdesk%2Fgithub-actions-allow-list-as-code-action","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Factionsdesk%2Fgithub-actions-allow-list-as-code-action/lists"}