@pulumi/github 6.10.0-alpha.1766036987 → 6.10.0-alpha.1766201671

package/enterpriseSecurityAnalysisSettings.d.ts

@@ -0,0 +1,162 @@
+import * as pulumi from "@pulumi/pulumi";
+/**
+ * This resource allows you to manage code security and analysis settings for a GitHub Enterprise account. This controls Advanced Security, Secret Scanning, and related security features that are automatically enabled for new repositories in the enterprise.
+ *
+ * You must have enterprise admin access to use this resource.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as github from "@pulumi/github";
+ *
+ * // Basic security settings - enable secret scanning only
+ * const basic = new github.EnterpriseSecurityAnalysisSettings("basic", {
+ *     enterpriseSlug: "my-enterprise",
+ *     secretScanningEnabledForNewRepositories: true,
+ * });
+ * // Full security configuration with all features enabled
+ * const comprehensive = new github.EnterpriseSecurityAnalysisSettings("comprehensive", {
+ *     enterpriseSlug: "my-enterprise",
+ *     advancedSecurityEnabledForNewRepositories: true,
+ *     secretScanningEnabledForNewRepositories: true,
+ *     secretScanningPushProtectionEnabledForNewRepositories: true,
+ *     secretScanningValidityChecksEnabled: true,
+ *     secretScanningPushProtectionCustomLink: "https://octokit.com/security-guidelines",
+ * });
+ * ```
+ *
+ * ## Notes
+ *
+ * > **Note:** This resource requires a GitHub Enterprise account and enterprise admin permissions.
+ *
+ * > **Note:** Advanced Security features require a GitHub Advanced Security license.
+ *
+ * When this resource is destroyed, all security analysis settings will be reset to disabled defaults for security reasons.
+ *
+ * ## Dependencies
+ *
+ * This resource manages the following security features:
+ *
+ * - **Advanced Security**: Code scanning, secret scanning, and dependency review
+ * - **Secret Scanning**: Automatic detection of secrets in code
+ * - **Push Protection**: Prevents secrets from being committed to repositories
+ * - **Validity Checks**: Verifies that detected secrets are actually valid
+ *
+ * These settings only apply to **new repositories** created after the settings are enabled. Existing repositories are not affected and must be configured individually.
+ *
+ * ## Import
+ *
+ * Enterprise security analysis settings can be imported using the enterprise slug:
+ *
+ * ```sh
+ * $ pulumi import github:index/enterpriseSecurityAnalysisSettings:EnterpriseSecurityAnalysisSettings example my-enterprise
+ * ```
+ */
+export declare class EnterpriseSecurityAnalysisSettings extends pulumi.CustomResource {
+    /**
+     * Get an existing EnterpriseSecurityAnalysisSettings resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: EnterpriseSecurityAnalysisSettingsState, opts?: pulumi.CustomResourceOptions): EnterpriseSecurityAnalysisSettings;
+    /**
+     * Returns true if the given object is an instance of EnterpriseSecurityAnalysisSettings.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj: any): obj is EnterpriseSecurityAnalysisSettings;
+    /**
+     * Whether GitHub Advanced Security is automatically enabled for new repositories. Defaults to `false`. Requires Advanced Security license.
+     */
+    readonly advancedSecurityEnabledForNewRepositories: pulumi.Output<boolean | undefined>;
+    /**
+     * The slug of the enterprise.
+     */
+    readonly enterpriseSlug: pulumi.Output<string>;
+    /**
+     * Whether secret scanning is automatically enabled for new repositories. Defaults to `false`.
+     */
+    readonly secretScanningEnabledForNewRepositories: pulumi.Output<boolean | undefined>;
+    /**
+     * Custom URL for secret scanning push protection bypass instructions.
+     */
+    readonly secretScanningPushProtectionCustomLink: pulumi.Output<string | undefined>;
+    /**
+     * Whether secret scanning push protection is automatically enabled for new repositories. Defaults to `false`.
+     */
+    readonly secretScanningPushProtectionEnabledForNewRepositories: pulumi.Output<boolean | undefined>;
+    /**
+     * Whether secret scanning validity checks are enabled. Defaults to `false`.
+     */
+    readonly secretScanningValidityChecksEnabled: pulumi.Output<boolean | undefined>;
+    /**
+     * Create a EnterpriseSecurityAnalysisSettings resource with the given unique name, arguments, and options.
+     *
+     * @param name The _unique_ name of the resource.
+     * @param args The arguments to use to populate this resource's properties.
+     * @param opts A bag of options that control this resource's behavior.
+     */
+    constructor(name: string, args: EnterpriseSecurityAnalysisSettingsArgs, opts?: pulumi.CustomResourceOptions);
+}
+/**
+ * Input properties used for looking up and filtering EnterpriseSecurityAnalysisSettings resources.
+ */
+export interface EnterpriseSecurityAnalysisSettingsState {
+    /**
+     * Whether GitHub Advanced Security is automatically enabled for new repositories. Defaults to `false`. Requires Advanced Security license.
+     */
+    advancedSecurityEnabledForNewRepositories?: pulumi.Input<boolean>;
+    /**
+     * The slug of the enterprise.
+     */
+    enterpriseSlug?: pulumi.Input<string>;
+    /**
+     * Whether secret scanning is automatically enabled for new repositories. Defaults to `false`.
+     */
+    secretScanningEnabledForNewRepositories?: pulumi.Input<boolean>;
+    /**
+     * Custom URL for secret scanning push protection bypass instructions.
+     */
+    secretScanningPushProtectionCustomLink?: pulumi.Input<string>;
+    /**
+     * Whether secret scanning push protection is automatically enabled for new repositories. Defaults to `false`.
+     */
+    secretScanningPushProtectionEnabledForNewRepositories?: pulumi.Input<boolean>;
+    /**
+     * Whether secret scanning validity checks are enabled. Defaults to `false`.
+     */
+    secretScanningValidityChecksEnabled?: pulumi.Input<boolean>;
+}
+/**
+ * The set of arguments for constructing a EnterpriseSecurityAnalysisSettings resource.
+ */
+export interface EnterpriseSecurityAnalysisSettingsArgs {
+    /**
+     * Whether GitHub Advanced Security is automatically enabled for new repositories. Defaults to `false`. Requires Advanced Security license.
+     */
+    advancedSecurityEnabledForNewRepositories?: pulumi.Input<boolean>;
+    /**
+     * The slug of the enterprise.
+     */
+    enterpriseSlug: pulumi.Input<string>;
+    /**
+     * Whether secret scanning is automatically enabled for new repositories. Defaults to `false`.
+     */
+    secretScanningEnabledForNewRepositories?: pulumi.Input<boolean>;
+    /**
+     * Custom URL for secret scanning push protection bypass instructions.
+     */
+    secretScanningPushProtectionCustomLink?: pulumi.Input<string>;
+    /**
+     * Whether secret scanning push protection is automatically enabled for new repositories. Defaults to `false`.
+     */
+    secretScanningPushProtectionEnabledForNewRepositories?: pulumi.Input<boolean>;
+    /**
+     * Whether secret scanning validity checks are enabled. Defaults to `false`.
+     */
+    secretScanningValidityChecksEnabled?: pulumi.Input<boolean>;
+}

package/enterpriseSecurityAnalysisSettings.js

@@ -0,0 +1,116 @@
+"use strict";
+// *** WARNING: this file was generated by pulumi-language-nodejs. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.EnterpriseSecurityAnalysisSettings = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("./utilities");
+/**
+ * This resource allows you to manage code security and analysis settings for a GitHub Enterprise account. This controls Advanced Security, Secret Scanning, and related security features that are automatically enabled for new repositories in the enterprise.
+ *
+ * You must have enterprise admin access to use this resource.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as github from "@pulumi/github";
+ *
+ * // Basic security settings - enable secret scanning only
+ * const basic = new github.EnterpriseSecurityAnalysisSettings("basic", {
+ *     enterpriseSlug: "my-enterprise",
+ *     secretScanningEnabledForNewRepositories: true,
+ * });
+ * // Full security configuration with all features enabled
+ * const comprehensive = new github.EnterpriseSecurityAnalysisSettings("comprehensive", {
+ *     enterpriseSlug: "my-enterprise",
+ *     advancedSecurityEnabledForNewRepositories: true,
+ *     secretScanningEnabledForNewRepositories: true,
+ *     secretScanningPushProtectionEnabledForNewRepositories: true,
+ *     secretScanningValidityChecksEnabled: true,
+ *     secretScanningPushProtectionCustomLink: "https://octokit.com/security-guidelines",
+ * });
+ * ```
+ *
+ * ## Notes
+ *
+ * > **Note:** This resource requires a GitHub Enterprise account and enterprise admin permissions.
+ *
+ * > **Note:** Advanced Security features require a GitHub Advanced Security license.
+ *
+ * When this resource is destroyed, all security analysis settings will be reset to disabled defaults for security reasons.
+ *
+ * ## Dependencies
+ *
+ * This resource manages the following security features:
+ *
+ * - **Advanced Security**: Code scanning, secret scanning, and dependency review
+ * - **Secret Scanning**: Automatic detection of secrets in code
+ * - **Push Protection**: Prevents secrets from being committed to repositories
+ * - **Validity Checks**: Verifies that detected secrets are actually valid
+ *
+ * These settings only apply to **new repositories** created after the settings are enabled. Existing repositories are not affected and must be configured individually.
+ *
+ * ## Import
+ *
+ * Enterprise security analysis settings can be imported using the enterprise slug:
+ *
+ * ```sh
+ * $ pulumi import github:index/enterpriseSecurityAnalysisSettings:EnterpriseSecurityAnalysisSettings example my-enterprise
+ * ```
+ */
+class EnterpriseSecurityAnalysisSettings extends pulumi.CustomResource {
+    /**
+     * Get an existing EnterpriseSecurityAnalysisSettings resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name, id, state, opts) {
+        return new EnterpriseSecurityAnalysisSettings(name, state, { ...opts, id: id });
+    }
+    /**
+     * Returns true if the given object is an instance of EnterpriseSecurityAnalysisSettings.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj) {
+        if (obj === undefined || obj === null) {
+            return false;
+        }
+        return obj['__pulumiType'] === EnterpriseSecurityAnalysisSettings.__pulumiType;
+    }
+    constructor(name, argsOrState, opts) {
+        let resourceInputs = {};
+        opts = opts || {};
+        if (opts.id) {
+            const state = argsOrState;
+            resourceInputs["advancedSecurityEnabledForNewRepositories"] = state?.advancedSecurityEnabledForNewRepositories;
+            resourceInputs["enterpriseSlug"] = state?.enterpriseSlug;
+            resourceInputs["secretScanningEnabledForNewRepositories"] = state?.secretScanningEnabledForNewRepositories;
+            resourceInputs["secretScanningPushProtectionCustomLink"] = state?.secretScanningPushProtectionCustomLink;
+            resourceInputs["secretScanningPushProtectionEnabledForNewRepositories"] = state?.secretScanningPushProtectionEnabledForNewRepositories;
+            resourceInputs["secretScanningValidityChecksEnabled"] = state?.secretScanningValidityChecksEnabled;
+        }
+        else {
+            const args = argsOrState;
+            if (args?.enterpriseSlug === undefined && !opts.urn) {
+                throw new Error("Missing required property 'enterpriseSlug'");
+            }
+            resourceInputs["advancedSecurityEnabledForNewRepositories"] = args?.advancedSecurityEnabledForNewRepositories;
+            resourceInputs["enterpriseSlug"] = args?.enterpriseSlug;
+            resourceInputs["secretScanningEnabledForNewRepositories"] = args?.secretScanningEnabledForNewRepositories;
+            resourceInputs["secretScanningPushProtectionCustomLink"] = args?.secretScanningPushProtectionCustomLink;
+            resourceInputs["secretScanningPushProtectionEnabledForNewRepositories"] = args?.secretScanningPushProtectionEnabledForNewRepositories;
+            resourceInputs["secretScanningValidityChecksEnabled"] = args?.secretScanningValidityChecksEnabled;
+        }
+        opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+        super(EnterpriseSecurityAnalysisSettings.__pulumiType, name, resourceInputs, opts);
+    }
+}
+exports.EnterpriseSecurityAnalysisSettings = EnterpriseSecurityAnalysisSettings;
+/** @internal */
+EnterpriseSecurityAnalysisSettings.__pulumiType = 'github:index/enterpriseSecurityAnalysisSettings:EnterpriseSecurityAnalysisSettings';
+//# sourceMappingURL=enterpriseSecurityAnalysisSettings.js.map

package/enterpriseSecurityAnalysisSettings.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"enterpriseSecurityAnalysisSettings.js","sourceRoot":"","sources":["../enterpriseSecurityAnalysisSettings.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAqDG;AACH,MAAa,kCAAmC,SAAQ,MAAM,CAAC,cAAc;IACzE;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAA+C,EAAE,IAAmC;QAC7I,OAAO,IAAI,kCAAkC,CAAC,IAAI,EAAO,KAAK,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IACzF,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,kCAAkC,CAAC,YAAY,CAAC;IACnF,CAAC;IAmCD,YAAY,IAAY,EAAE,WAA8F,EAAE,IAAmC;QACzJ,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAkE,CAAC;YACjF,cAAc,CAAC,2CAA2C,CAAC,GAAG,KAAK,EAAE,yCAAyC,CAAC;YAC/G,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,EAAE,cAAc,CAAC;YACzD,cAAc,CAAC,yCAAyC,CAAC,GAAG,KAAK,EAAE,uCAAuC,CAAC;YAC3G,cAAc,CAAC,wCAAwC,CAAC,GAAG,KAAK,EAAE,sCAAsC,CAAC;YACzG,cAAc,CAAC,uDAAuD,CAAC,GAAG,KAAK,EAAE,qDAAqD,CAAC;YACvI,cAAc,CAAC,qCAAqC,CAAC,GAAG,KAAK,EAAE,mCAAmC,CAAC;SACtG;aAAM;YACH,MAAM,IAAI,GAAG,WAAiE,CAAC;YAC/E,IAAI,IAAI,EAAE,cAAc,KAAK,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACjD,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAC;aACjE;YACD,cAAc,CAAC,2CAA2C,CAAC,GAAG,IAAI,EAAE,yCAAyC,CAAC;YAC9G,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,EAAE,cAAc,CAAC;YACxD,cAAc,CAAC,yCAAyC,CAAC,GAAG,IAAI,EAAE,uCAAuC,CAAC;YAC1G,cAAc,CAAC,wCAAwC,CAAC,GAAG,IAAI,EAAE,sCAAsC,CAAC;YACxG,cAAc,CAAC,uDAAuD,CAAC,GAAG,IAAI,EAAE,qDAAqD,CAAC;YACtI,cAAc,CAAC,qCAAqC,CAAC,GAAG,IAAI,EAAE,mCAAmC,CAAC;SACrG;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,kCAAkC,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACvF,CAAC;;AAtFL,gFAuFC;AAzEG,gBAAgB;AACO,+CAAY,GAAG,oFAAoF,CAAC"}

package/getOrganizationCustomProperties.d.ts

@@ -42,6 +42,10 @@ export interface GetOrganizationCustomPropertiesArgs {
      * The type of the custom property. Can be one of `string`, `singleSelect`, `multiSelect`, or `trueFalse`.
      */
     valueType?: string;
+    /**
+     * Who can edit the values of the custom property. Can be one of `orgActors` or `orgAndRepoActors`.
+     */
+    valuesEditableBy?: string;
 }
 /**
  * A collection of values returned by getOrganizationCustomProperties.
@@ -75,6 +79,10 @@ export interface GetOrganizationCustomPropertiesResult {
      * The type of the custom property. Can be one of `string`, `singleSelect`, `multiSelect`, or `trueFalse`.
      */
     readonly valueType?: string;
+    /**
+     * Who can edit the values of the custom property. Can be one of `orgActors` or `orgAndRepoActors`.
+     */
+    readonly valuesEditableBy: string;
 }
 /**
  * Use this data source to retrieve information about a GitHub organization custom property.
@@ -119,4 +127,8 @@ export interface GetOrganizationCustomPropertiesOutputArgs {
      * The type of the custom property. Can be one of `string`, `singleSelect`, `multiSelect`, or `trueFalse`.
      */
     valueType?: pulumi.Input<string>;
+    /**
+     * Who can edit the values of the custom property. Can be one of `orgActors` or `orgAndRepoActors`.
+     */
+    valuesEditableBy?: pulumi.Input<string>;
 }

package/getOrganizationCustomProperties.js

@@ -28,6 +28,7 @@ function getOrganizationCustomProperties(args, opts) {
         "propertyName": args.propertyName,
         "required": args.required,
         "valueType": args.valueType,
+        "valuesEditableBy": args.valuesEditableBy,
     }, opts);
 }
 exports.getOrganizationCustomProperties = getOrganizationCustomProperties;
@@ -54,6 +55,7 @@ function getOrganizationCustomPropertiesOutput(args, opts) {
         "propertyName": args.propertyName,
         "required": args.required,
         "valueType": args.valueType,
+        "valuesEditableBy": args.valuesEditableBy,
     }, opts);
 }
 exports.getOrganizationCustomPropertiesOutput = getOrganizationCustomPropertiesOutput;

package/getOrganizationCustomProperties.js.map

@@ -1 +1 @@
-{"version":3,"file":"getOrganizationCustomProperties.js","sourceRoot":"","sources":["../getOrganizationCustomProperties.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;GAaG;AACH,SAAgB,+BAA+B,CAAC,IAAyC,EAAE,IAA2B;IAClH,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,8EAA8E,EAAE;QACzG,eAAe,EAAE,IAAI,CAAC,aAAa;QACnC,cAAc,EAAE,IAAI,CAAC,YAAY;QACjC,aAAa,EAAE,IAAI,CAAC,WAAW;QAC/B,cAAc,EAAE,IAAI,CAAC,YAAY;QACjC,UAAU,EAAE,IAAI,CAAC,QAAQ;QACzB,WAAW,EAAE,IAAI,CAAC,SAAS;KAC9B,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAVD,0EAUC;AAiED;;;;;;;;;;;;;GAaG;AACH,SAAgB,qCAAqC,CAAC,IAA+C,EAAE,IAAiC;IACpI,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,8EAA8E,EAAE;QAC/G,eAAe,EAAE,IAAI,CAAC,aAAa;QACnC,cAAc,EAAE,IAAI,CAAC,YAAY;QACjC,aAAa,EAAE,IAAI,CAAC,WAAW;QAC/B,cAAc,EAAE,IAAI,CAAC,YAAY;QACjC,UAAU,EAAE,IAAI,CAAC,QAAQ;QACzB,WAAW,EAAE,IAAI,CAAC,SAAS;KAC9B,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAVD,sFAUC"}
+{"version":3,"file":"getOrganizationCustomProperties.js","sourceRoot":"","sources":["../getOrganizationCustomProperties.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;GAaG;AACH,SAAgB,+BAA+B,CAAC,IAAyC,EAAE,IAA2B;IAClH,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,8EAA8E,EAAE;QACzG,eAAe,EAAE,IAAI,CAAC,aAAa;QACnC,cAAc,EAAE,IAAI,CAAC,YAAY;QACjC,aAAa,EAAE,IAAI,CAAC,WAAW;QAC/B,cAAc,EAAE,IAAI,CAAC,YAAY;QACjC,UAAU,EAAE,IAAI,CAAC,QAAQ;QACzB,WAAW,EAAE,IAAI,CAAC,SAAS;QAC3B,kBAAkB,EAAE,IAAI,CAAC,gBAAgB;KAC5C,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAXD,0EAWC;AAyED;;;;;;;;;;;;;GAaG;AACH,SAAgB,qCAAqC,CAAC,IAA+C,EAAE,IAAiC;IACpI,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,8EAA8E,EAAE;QAC/G,eAAe,EAAE,IAAI,CAAC,aAAa;QACnC,cAAc,EAAE,IAAI,CAAC,YAAY;QACjC,aAAa,EAAE,IAAI,CAAC,WAAW;QAC/B,cAAc,EAAE,IAAI,CAAC,YAAY;QACjC,UAAU,EAAE,IAAI,CAAC,QAAQ;QACzB,WAAW,EAAE,IAAI,CAAC,SAAS;QAC3B,kBAAkB,EAAE,IAAI,CAAC,gBAAgB;KAC5C,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAXD,sFAWC"}

package/getOrganizationSecurityManagers.d.ts

@@ -1,6 +1,8 @@
 import * as pulumi from "@pulumi/pulumi";
 import * as outputs from "./types/output";
 /**
+ * > **Note:** This data source is deprecated, please use the `github.OrganizationRoleTeam` resource instead.
+ *
  * Use this data source to retrieve the security managers for an organization.
  *
  * ## Example Usage
@@ -27,6 +29,8 @@ export interface GetOrganizationSecurityManagersResult {
     readonly teams: outputs.GetOrganizationSecurityManagersTeam[];
 }
 /**
+ * > **Note:** This data source is deprecated, please use the `github.OrganizationRoleTeam` resource instead.
+ *
  * Use this data source to retrieve the security managers for an organization.
  *
  * ## Example Usage

package/getOrganizationSecurityManagers.js

@@ -6,6 +6,8 @@ exports.getOrganizationSecurityManagersOutput = exports.getOrganizationSecurityM
 const pulumi = require("@pulumi/pulumi");
 const utilities = require("./utilities");
 /**
+ * > **Note:** This data source is deprecated, please use the `github.OrganizationRoleTeam` resource instead.
+ *
  * Use this data source to retrieve the security managers for an organization.
  *
  * ## Example Usage
@@ -23,6 +25,8 @@ function getOrganizationSecurityManagers(opts) {
 }
 exports.getOrganizationSecurityManagers = getOrganizationSecurityManagers;
 /**
+ * > **Note:** This data source is deprecated, please use the `github.OrganizationRoleTeam` resource instead.
+ *
  * Use this data source to retrieve the security managers for an organization.
  *
  * ## Example Usage

package/getOrganizationSecurityManagers.js.map

@@ -1 +1 @@
-{"version":3,"file":"getOrganizationSecurityManagers.js","sourceRoot":"","sources":["../getOrganizationSecurityManagers.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC;;;;;;;;;;;GAWG;AACH,SAAgB,+BAA+B,CAAC,IAA2B;IACvE,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,8EAA8E,EAAE,EAC5G,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAJD,0EAIC;AAeD;;;;;;;;;;;GAWG;AACH,SAAgB,qCAAqC,CAAC,IAAiC;IACnF,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,8EAA8E,EAAE,EAClH,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAJD,sFAIC"}
+{"version":3,"file":"getOrganizationSecurityManagers.js","sourceRoot":"","sources":["../getOrganizationSecurityManagers.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC;;;;;;;;;;;;;GAaG;AACH,SAAgB,+BAA+B,CAAC,IAA2B;IACvE,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,8EAA8E,EAAE,EAC5G,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAJD,0EAIC;AAeD;;;;;;;;;;;;;GAaG;AACH,SAAgB,qCAAqC,CAAC,IAAiC;IACnF,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,8EAA8E,EAAE,EAClH,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAJD,sFAIC"}

package/getRepositoryDeploymentBranchPolicies.d.ts

@@ -1,6 +1,8 @@
 import * as pulumi from "@pulumi/pulumi";
 import * as outputs from "./types/output";
 /**
+ * > **Note:** This data source is deprecated, please use the `github.getRepositoryEnvironmentDeploymentPolicies` data source instead.
+ *
  * Use this data source to retrieve deployment branch policies for a repository / environment.
  *
  * ## Example Usage
@@ -45,6 +47,8 @@ export interface GetRepositoryDeploymentBranchPoliciesResult {
     readonly repository: string;
 }
 /**
+ * > **Note:** This data source is deprecated, please use the `github.getRepositoryEnvironmentDeploymentPolicies` data source instead.
+ *
  * Use this data source to retrieve deployment branch policies for a repository / environment.
  *
  * ## Example Usage

package/getRepositoryDeploymentBranchPolicies.js

@@ -6,6 +6,8 @@ exports.getRepositoryDeploymentBranchPoliciesOutput = exports.getRepositoryDeplo
 const pulumi = require("@pulumi/pulumi");
 const utilities = require("./utilities");
 /**
+ * > **Note:** This data source is deprecated, please use the `github.getRepositoryEnvironmentDeploymentPolicies` data source instead.
+ *
  * Use this data source to retrieve deployment branch policies for a repository / environment.
  *
  * ## Example Usage
@@ -29,6 +31,8 @@ function getRepositoryDeploymentBranchPolicies(args, opts) {
 }
 exports.getRepositoryDeploymentBranchPolicies = getRepositoryDeploymentBranchPolicies;
 /**
+ * > **Note:** This data source is deprecated, please use the `github.getRepositoryEnvironmentDeploymentPolicies` data source instead.
+ *
  * Use this data source to retrieve deployment branch policies for a repository / environment.
  *
  * ## Example Usage

package/getRepositoryDeploymentBranchPolicies.js.map

@@ -1 +1 @@
-{"version":3,"file":"getRepositoryDeploymentBranchPolicies.js","sourceRoot":"","sources":["../getRepositoryDeploymentBranchPolicies.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC;;;;;;;;;;;;;;GAcG;AACH,SAAgB,qCAAqC,CAAC,IAA+C,EAAE,IAA2B;IAC9H,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,0FAA0F,EAAE;QACrH,iBAAiB,EAAE,IAAI,CAAC,eAAe;QACvC,YAAY,EAAE,IAAI,CAAC,UAAU;KAChC,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAND,sFAMC;AA+BD;;;;;;;;;;;;;;GAcG;AACH,SAAgB,2CAA2C,CAAC,IAAqD,EAAE,IAAiC;IAChJ,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,0FAA0F,EAAE;QAC3H,iBAAiB,EAAE,IAAI,CAAC,eAAe;QACvC,YAAY,EAAE,IAAI,CAAC,UAAU;KAChC,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAND,kGAMC"}
+{"version":3,"file":"getRepositoryDeploymentBranchPolicies.js","sourceRoot":"","sources":["../getRepositoryDeploymentBranchPolicies.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;GAgBG;AACH,SAAgB,qCAAqC,CAAC,IAA+C,EAAE,IAA2B;IAC9H,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,0FAA0F,EAAE;QACrH,iBAAiB,EAAE,IAAI,CAAC,eAAe;QACvC,YAAY,EAAE,IAAI,CAAC,UAAU;KAChC,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAND,sFAMC;AA+BD;;;;;;;;;;;;;;;;GAgBG;AACH,SAAgB,2CAA2C,CAAC,IAAqD,EAAE,IAAiC;IAChJ,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,0FAA0F,EAAE;QAC3H,iBAAiB,EAAE,IAAI,CAAC,eAAe;QACvC,YAAY,EAAE,IAAI,CAAC,UAAU;KAChC,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAND,kGAMC"}

package/getRepositoryEnvironmentDeploymentPolicies.d.ts

@@ -0,0 +1,75 @@
+import * as pulumi from "@pulumi/pulumi";
+import * as outputs from "./types/output";
+/**
+ * Use this data source to retrieve deployment branch policies for a repository environment.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as github from "@pulumi/github";
+ *
+ * const example = github.getRepositoryEnvironmentDeploymentPolicies({
+ *     repository: "example-repository",
+ *     environment: "env-name",
+ * });
+ * ```
+ */
+export declare function getRepositoryEnvironmentDeploymentPolicies(args: GetRepositoryEnvironmentDeploymentPoliciesArgs, opts?: pulumi.InvokeOptions): Promise<GetRepositoryEnvironmentDeploymentPoliciesResult>;
+/**
+ * A collection of arguments for invoking getRepositoryEnvironmentDeploymentPolicies.
+ */
+export interface GetRepositoryEnvironmentDeploymentPoliciesArgs {
+    /**
+     * Name of the environment to retrieve the deployment branch policies from.
+     */
+    environment: string;
+    /**
+     * Name of the repository to retrieve the deployment branch policies from.
+     */
+    repository: string;
+}
+/**
+ * A collection of values returned by getRepositoryEnvironmentDeploymentPolicies.
+ */
+export interface GetRepositoryEnvironmentDeploymentPoliciesResult {
+    readonly environment: string;
+    /**
+     * The provider-assigned unique ID for this managed resource.
+     */
+    readonly id: string;
+    /**
+     * The list of deployment policies for the repository environment. Each element of `policies` has the following attributes:
+     */
+    readonly policies: outputs.GetRepositoryEnvironmentDeploymentPoliciesPolicy[];
+    readonly repository: string;
+}
+/**
+ * Use this data source to retrieve deployment branch policies for a repository environment.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as github from "@pulumi/github";
+ *
+ * const example = github.getRepositoryEnvironmentDeploymentPolicies({
+ *     repository: "example-repository",
+ *     environment: "env-name",
+ * });
+ * ```
+ */
+export declare function getRepositoryEnvironmentDeploymentPoliciesOutput(args: GetRepositoryEnvironmentDeploymentPoliciesOutputArgs, opts?: pulumi.InvokeOutputOptions): pulumi.Output<GetRepositoryEnvironmentDeploymentPoliciesResult>;
+/**
+ * A collection of arguments for invoking getRepositoryEnvironmentDeploymentPolicies.
+ */
+export interface GetRepositoryEnvironmentDeploymentPoliciesOutputArgs {
+    /**
+     * Name of the environment to retrieve the deployment branch policies from.
+     */
+    environment: pulumi.Input<string>;
+    /**
+     * Name of the repository to retrieve the deployment branch policies from.
+     */
+    repository: pulumi.Input<string>;
+}

package/getRepositoryEnvironmentDeploymentPolicies.js

@@ -0,0 +1,54 @@
+"use strict";
+// *** WARNING: this file was generated by pulumi-language-nodejs. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getRepositoryEnvironmentDeploymentPoliciesOutput = exports.getRepositoryEnvironmentDeploymentPolicies = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("./utilities");
+/**
+ * Use this data source to retrieve deployment branch policies for a repository environment.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as github from "@pulumi/github";
+ *
+ * const example = github.getRepositoryEnvironmentDeploymentPolicies({
+ *     repository: "example-repository",
+ *     environment: "env-name",
+ * });
+ * ```
+ */
+function getRepositoryEnvironmentDeploymentPolicies(args, opts) {
+    opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts || {});
+    return pulumi.runtime.invoke("github:index/getRepositoryEnvironmentDeploymentPolicies:getRepositoryEnvironmentDeploymentPolicies", {
+        "environment": args.environment,
+        "repository": args.repository,
+    }, opts);
+}
+exports.getRepositoryEnvironmentDeploymentPolicies = getRepositoryEnvironmentDeploymentPolicies;
+/**
+ * Use this data source to retrieve deployment branch policies for a repository environment.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as github from "@pulumi/github";
+ *
+ * const example = github.getRepositoryEnvironmentDeploymentPolicies({
+ *     repository: "example-repository",
+ *     environment: "env-name",
+ * });
+ * ```
+ */
+function getRepositoryEnvironmentDeploymentPoliciesOutput(args, opts) {
+    opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts || {});
+    return pulumi.runtime.invokeOutput("github:index/getRepositoryEnvironmentDeploymentPolicies:getRepositoryEnvironmentDeploymentPolicies", {
+        "environment": args.environment,
+        "repository": args.repository,
+    }, opts);
+}
+exports.getRepositoryEnvironmentDeploymentPoliciesOutput = getRepositoryEnvironmentDeploymentPoliciesOutput;
+//# sourceMappingURL=getRepositoryEnvironmentDeploymentPolicies.js.map

package/getRepositoryEnvironmentDeploymentPolicies.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"getRepositoryEnvironmentDeploymentPolicies.js","sourceRoot":"","sources":["../getRepositoryEnvironmentDeploymentPolicies.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAGzC,yCAAyC;AAEzC;;;;;;;;;;;;;;GAcG;AACH,SAAgB,0CAA0C,CAAC,IAAoD,EAAE,IAA2B;IACxI,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,oGAAoG,EAAE;QAC/H,aAAa,EAAE,IAAI,CAAC,WAAW;QAC/B,YAAY,EAAE,IAAI,CAAC,UAAU;KAChC,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAND,gGAMC;AA+BD;;;;;;;;;;;;;;GAcG;AACH,SAAgB,gDAAgD,CAAC,IAA0D,EAAE,IAAiC;IAC1J,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACzE,OAAO,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,oGAAoG,EAAE;QACrI,aAAa,EAAE,IAAI,CAAC,WAAW;QAC/B,YAAY,EAAE,IAAI,CAAC,UAAU;KAChC,EAAE,IAAI,CAAC,CAAC;AACb,CAAC;AAND,4GAMC"}

package/index.d.ts

@@ -4,6 +4,9 @@ export declare const ActionsEnvironmentSecret: typeof import("./actionsEnvironme
 export { ActionsEnvironmentVariableArgs, ActionsEnvironmentVariableState } from "./actionsEnvironmentVariable";
 export type ActionsEnvironmentVariable = import("./actionsEnvironmentVariable").ActionsEnvironmentVariable;
 export declare const ActionsEnvironmentVariable: typeof import("./actionsEnvironmentVariable").ActionsEnvironmentVariable;
+export { ActionsHostedRunnerArgs, ActionsHostedRunnerState } from "./actionsHostedRunner";
+export type ActionsHostedRunner = import("./actionsHostedRunner").ActionsHostedRunner;
+export declare const ActionsHostedRunner: typeof import("./actionsHostedRunner").ActionsHostedRunner;
 export { ActionsOrganizationOidcSubjectClaimCustomizationTemplateArgs, ActionsOrganizationOidcSubjectClaimCustomizationTemplateState } from "./actionsOrganizationOidcSubjectClaimCustomizationTemplate";
 export type ActionsOrganizationOidcSubjectClaimCustomizationTemplate = import("./actionsOrganizationOidcSubjectClaimCustomizationTemplate").ActionsOrganizationOidcSubjectClaimCustomizationTemplate;
 export declare const ActionsOrganizationOidcSubjectClaimCustomizationTemplate: typeof import("./actionsOrganizationOidcSubjectClaimCustomizationTemplate").ActionsOrganizationOidcSubjectClaimCustomizationTemplate;
@@ -88,9 +91,15 @@ export declare const EnterpriseActionsPermissions: typeof import("./enterpriseAc
 export { EnterpriseActionsRunnerGroupArgs, EnterpriseActionsRunnerGroupState } from "./enterpriseActionsRunnerGroup";
 export type EnterpriseActionsRunnerGroup = import("./enterpriseActionsRunnerGroup").EnterpriseActionsRunnerGroup;
 export declare const EnterpriseActionsRunnerGroup: typeof import("./enterpriseActionsRunnerGroup").EnterpriseActionsRunnerGroup;
+export { EnterpriseActionsWorkflowPermissionsArgs, EnterpriseActionsWorkflowPermissionsState } from "./enterpriseActionsWorkflowPermissions";
+export type EnterpriseActionsWorkflowPermissions = import("./enterpriseActionsWorkflowPermissions").EnterpriseActionsWorkflowPermissions;
+export declare const EnterpriseActionsWorkflowPermissions: typeof import("./enterpriseActionsWorkflowPermissions").EnterpriseActionsWorkflowPermissions;
 export { EnterpriseOrganizationArgs, EnterpriseOrganizationState } from "./enterpriseOrganization";
 export type EnterpriseOrganization = import("./enterpriseOrganization").EnterpriseOrganization;
 export declare const EnterpriseOrganization: typeof import("./enterpriseOrganization").EnterpriseOrganization;
+export { EnterpriseSecurityAnalysisSettingsArgs, EnterpriseSecurityAnalysisSettingsState } from "./enterpriseSecurityAnalysisSettings";
+export type EnterpriseSecurityAnalysisSettings = import("./enterpriseSecurityAnalysisSettings").EnterpriseSecurityAnalysisSettings;
+export declare const EnterpriseSecurityAnalysisSettings: typeof import("./enterpriseSecurityAnalysisSettings").EnterpriseSecurityAnalysisSettings;
 export { GetActionsEnvironmentPublicKeyArgs, GetActionsEnvironmentPublicKeyResult, GetActionsEnvironmentPublicKeyOutputArgs } from "./getActionsEnvironmentPublicKey";
 export declare const getActionsEnvironmentPublicKey: typeof import("./getActionsEnvironmentPublicKey").getActionsEnvironmentPublicKey;
 export declare const getActionsEnvironmentPublicKeyOutput: typeof import("./getActionsEnvironmentPublicKey").getActionsEnvironmentPublicKeyOutput;
@@ -262,6 +271,9 @@ export declare const getRepositoryDeployKeysOutput: typeof import("./getReposito
 export { GetRepositoryDeploymentBranchPoliciesArgs, GetRepositoryDeploymentBranchPoliciesResult, GetRepositoryDeploymentBranchPoliciesOutputArgs } from "./getRepositoryDeploymentBranchPolicies";
 export declare const getRepositoryDeploymentBranchPolicies: typeof import("./getRepositoryDeploymentBranchPolicies").getRepositoryDeploymentBranchPolicies;
 export declare const getRepositoryDeploymentBranchPoliciesOutput: typeof import("./getRepositoryDeploymentBranchPolicies").getRepositoryDeploymentBranchPoliciesOutput;
+export { GetRepositoryEnvironmentDeploymentPoliciesArgs, GetRepositoryEnvironmentDeploymentPoliciesResult, GetRepositoryEnvironmentDeploymentPoliciesOutputArgs } from "./getRepositoryEnvironmentDeploymentPolicies";
+export declare const getRepositoryEnvironmentDeploymentPolicies: typeof import("./getRepositoryEnvironmentDeploymentPolicies").getRepositoryEnvironmentDeploymentPolicies;
+export declare const getRepositoryEnvironmentDeploymentPoliciesOutput: typeof import("./getRepositoryEnvironmentDeploymentPolicies").getRepositoryEnvironmentDeploymentPoliciesOutput;
 export { GetRepositoryEnvironmentsArgs, GetRepositoryEnvironmentsResult, GetRepositoryEnvironmentsOutputArgs } from "./getRepositoryEnvironments";
 export declare const getRepositoryEnvironments: typeof import("./getRepositoryEnvironments").getRepositoryEnvironments;
 export declare const getRepositoryEnvironmentsOutput: typeof import("./getRepositoryEnvironments").getRepositoryEnvironmentsOutput;