Skip to content
/ github-actions-allow-list-as-code-action Public

Automate GitHub Actions allow list for GitHub Enterprise Cloud accounts

License

MIT license
15 stars 6 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ActionsDesk/github-actions-allow-list-as-code-action

Use this GitHub action with your project
Add this Action to an existing workflow or create a new one
View on Marketplace
1 Branch8 Tags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

dependabot[bot]dependabot[bot]
πŸ†™ npm(deps): Bump the npm_and_yarn group with 2 updates (#138)
Feb 17, 2025
7d39de3 Β· Feb 17, 2025

History

121 Commits
.github
.github
Feb 3, 2025
dist
dist
Mar 22, 2024
utils
utils
Aug 5, 2024
.editorconfig
.editorconfig
May 27, 2021
.eslintignore
.eslintignore
May 27, 2021
.eslintrc.json
.eslintrc.json
Feb 15, 2024
.gitattributes
.gitattributes
Jun 8, 2021
.gitignore
.gitignore
May 27, 2021
.prettierignore
.prettierignore
Apr 3, 2023
.prettierrc.cjs
.prettierrc.cjs
Apr 3, 2023
action.js
action.js
Jun 22, 2023
action.yml
action.yml
Mar 22, 2024
license
license
May 27, 2021
package-lock.json
package-lock.json
Feb 17, 2025
package.json
package.json
Feb 1, 2025
readme.md
readme.md
Feb 15, 2024

Repository files navigation

github-actions-allow-list-as-code-action

Automate GitHub Actions allow list for GitHub Enterprise accounts

test CodeQL styled with prettier

Usage

name: Deploy GitHub Actions allow list

on:
  push:
    branches: [main]
    paths: [github-actions-allow-list.yml]

jobs:
  deploy:
    runs-on: ubuntu-latest

    permissions: read-all

    steps:
      - name: Checkout
        uses: actions/checkout@v2.3.4

      - name: Setup node
        uses: actions/setup-node@v2.1.5
        with:
          node-version: 14.x

      - name: Deploy GitHub Actions allow list
        uses: ActionsDesk/github-actions-allow-list-as-code-action@v1.1.2
        with:
          token: ${{ secrets.ENTERPRISE_ADMIN_TOKEN }}
          enterprise: 'your-enterprise'
          # same as defined under `on.pull_requests.paths`
          allow_list_path: github-actions-allow-list.yml
          # gh_api_url: 'https://github.example.com/api/v3' # Only required for GitHub Enterprise Server

Action Inputs

Name Description Default Required
token GitHub Personal Access Token (PAT) with admin:enterprise or admin:org scope true
organization GitHub organization slug false
enterprise GitHub Enterprise account slug false
allow_list_path Path to the GitHub Actions allow list YML within the repository github-actions-allow-list.yml false
gh_api_url GitHub Enterprise Servier - URL to the GitHub API endpoint.
Example: https://github.example.com/api/v3.		 https://api.github.com false

ℹ️ Notes for providing enterprise or organization:

Allow List file

Example content for Allow List file containing actions: key and list with two allowed actions.

actions:
  - actionsdesk/github-actions-allow-list-as-code-action@v1.1.2
  - hashicorp/vault-action@v2.4.0

License

About

Automate GitHub Actions allow list for GitHub Enterprise Cloud accounts

Topics

automation policy-as-code github-actions github-enterprise-cloud

Resources

Readme

License

MIT license

Code of conduct

Code of conduct

Security policy

Security policy
Activity
Custom properties

Stars

15 stars

Watchers

3 watching

Forks

6 forks
Report repository

Releases 8

v3.1.0 Latest
Mar 22, 2024
+ 7 releases

Contributors 6

Languages