name | example | route | scope | type |
---|---|---|---|---|
Set allowed actions for an organization |
octokit.actions.setAllowedActionsOrganization({ org, github_owned_allowed, verified_allowed, patterns_allowed }) |
PUT /orgs/{org}/actions/permissions/selected-actions |
actions |
API method |
Sets the actions that are allowed in an organization. To use this endpoint, the organization permission policy for allowed_actions
must be configured to selected
. For more information, see "Set GitHub Actions permissions for an organization."
If the organization belongs to an enterprise that has selected
actions set at the enterprise level, then you cannot override any of the enterprise's allowed actions settings.
To use the patterns_allowed
setting for private repositories, the organization must belong to an enterprise. If the organization does not belong to an enterprise, then the patterns_allowed
setting only applies to public repositories in the organization.
You must authenticate using an access token with the admin:org
scope to use this endpoint. GitHub Apps must have the administration
organization permission to use this API.
octokit.actions.setAllowedActionsOrganization({
org,
github_owned_allowed,
verified_allowed,
patterns_allowed,
});
name | required | description |
---|---|---|
org | yes | |
github_owned_allowed | yes |
Whether GitHub-owned actions are allowed. For example, this includes the actions in the |
verified_allowed | yes |
Whether actions in GitHub Marketplace from verified creators are allowed. Set to |
patterns_allowed | yes |
Specifies a list of string-matching patterns to allow specific action(s). Wildcards, tags, and SHAs are allowed. For example, |
See also: GitHub Developer Guide documentation.