PyPI - pulumi-github - Versions diffs - 6.11.0a1768542226__py3-none-any.whl → 6.12.0__py3-none-any.whl - Mend

pulumi-github 6.11.0a1768542226py3-none-any.whl → 6.12.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (39) hide show

pulumi_github/__init__.py +37 -0
pulumi_github/_inputs.py +527 -34
pulumi_github/actions_environment_secret.py +141 -12
pulumi_github/actions_environment_variable.py +73 -39
pulumi_github/actions_organization_permissions.py +50 -3
pulumi_github/actions_organization_secret.py +164 -55
pulumi_github/actions_organization_secret_repositories.py +44 -28
pulumi_github/actions_organization_secret_repository.py +44 -28
pulumi_github/actions_organization_variable.py +44 -47
pulumi_github/actions_organization_variable_repositories.py +262 -0
pulumi_github/actions_organization_variable_repository.py +262 -0
pulumi_github/actions_organization_workflow_permissions.py +320 -0
pulumi_github/actions_repository_permissions.py +50 -3
pulumi_github/actions_secret.py +176 -41
pulumi_github/actions_variable.py +65 -33
pulumi_github/app_installation_repositories.py +6 -6
pulumi_github/app_installation_repository.py +6 -6
pulumi_github/dependabot_organization_secret.py +128 -59
pulumi_github/dependabot_organization_secret_repositories.py +44 -36
pulumi_github/dependabot_organization_secret_repository.py +262 -0
pulumi_github/dependabot_secret.py +154 -41
pulumi_github/emu_group_mapping.py +62 -6
pulumi_github/get_ip_ranges.py +3 -0
pulumi_github/get_release_asset.py +370 -0
pulumi_github/get_repository.py +17 -2
pulumi_github/get_team.py +29 -13
pulumi_github/organization_ruleset.py +11 -17
pulumi_github/outputs.py +404 -25
pulumi_github/pulumi-plugin.json +1 -1
pulumi_github/repository.py +88 -23
pulumi_github/repository_custom_property.py +2 -2
pulumi_github/repository_environment.py +11 -11
pulumi_github/repository_environment_deployment_policy.py +4 -4
pulumi_github/repository_ruleset.py +7 -7
pulumi_github/team.py +70 -21
{pulumi_github-6.11.0a1768542226.dist-info → pulumi_github-6.12.0.dist-info}/METADATA +1 -1
{pulumi_github-6.11.0a1768542226.dist-info → pulumi_github-6.12.0.dist-info}/RECORD +39 -34
{pulumi_github-6.11.0a1768542226.dist-info → pulumi_github-6.12.0.dist-info}/WHEEL +1 -1
{pulumi_github-6.11.0a1768542226.dist-info → pulumi_github-6.12.0.dist-info}/top_level.txt +0 -0

pulumi_github/outputs.py CHANGED Viewed

@@ -41,11 +41,14 @@ __all__ = [
     'OrganizationRulesetRulesCommitAuthorEmailPattern',
     'OrganizationRulesetRulesCommitMessagePattern',
     'OrganizationRulesetRulesCommitterEmailPattern',
+    'OrganizationRulesetRulesCopilotCodeReview',
     'OrganizationRulesetRulesFileExtensionRestriction',
     'OrganizationRulesetRulesFilePathRestriction',
     'OrganizationRulesetRulesMaxFilePathLength',
     'OrganizationRulesetRulesMaxFileSize',
     'OrganizationRulesetRulesPullRequest',
+    'OrganizationRulesetRulesPullRequestRequiredReviewer',
+    'OrganizationRulesetRulesPullRequestRequiredReviewerReviewer',
     'OrganizationRulesetRulesRequiredCodeScanning',
     'OrganizationRulesetRulesRequiredCodeScanningRequiredCodeScanningTool',
     'OrganizationRulesetRulesRequiredStatusChecks',
@@ -69,12 +72,15 @@ __all__ = [
     'RepositoryRulesetRulesCommitAuthorEmailPattern',
     'RepositoryRulesetRulesCommitMessagePattern',
     'RepositoryRulesetRulesCommitterEmailPattern',
+    'RepositoryRulesetRulesCopilotCodeReview',
     'RepositoryRulesetRulesFileExtensionRestriction',
     'RepositoryRulesetRulesFilePathRestriction',
     'RepositoryRulesetRulesMaxFilePathLength',
     'RepositoryRulesetRulesMaxFileSize',
     'RepositoryRulesetRulesMergeQueue',
     'RepositoryRulesetRulesPullRequest',
+    'RepositoryRulesetRulesPullRequestRequiredReviewer',
+    'RepositoryRulesetRulesPullRequestRequiredReviewerReviewer',
     'RepositoryRulesetRulesRequiredCodeScanning',
     'RepositoryRulesetRulesRequiredCodeScanningRequiredCodeScanningTool',
     'RepositoryRulesetRulesRequiredDeployments',
@@ -1193,9 +1199,9 @@ class OrganizationRulesetBypassActor(dict):
                ~>Note: at the time of writing this, the following actor types correspond to the following actor IDs:
-               * `OrganizationAdmin` > `1`
-               * `RepositoryRole` (This is the actor type, the following are the base repository roles and their associated IDs.)
-        :param _builtins.int actor_id: (Number) The ID of the actor that can bypass a ruleset.
+               - `OrganizationAdmin` > `1`
+               - `RepositoryRole` (This is the actor type, the following are the base repository roles and their associated IDs.)
+        :param _builtins.int actor_id: (Number) The ID of the actor that can bypass a ruleset. Some actor types such as `DeployKey` do not have an ID.
         """
         pulumi.set(__self__, "actor_type", actor_type)
         pulumi.set(__self__, "bypass_mode", bypass_mode)
@@ -1218,8 +1224,8 @@ class OrganizationRulesetBypassActor(dict):
         ~>Note: at the time of writing this, the following actor types correspond to the following actor IDs:
-        * `OrganizationAdmin` > `1`
-        * `RepositoryRole` (This is the actor type, the following are the base repository roles and their associated IDs.)
+        - `OrganizationAdmin` > `1`
+        - `RepositoryRole` (This is the actor type, the following are the base repository roles and their associated IDs.)
         """
         return pulumi.get(self, "bypass_mode")
@@ -1227,7 +1233,7 @@ class OrganizationRulesetBypassActor(dict):
     @pulumi.getter(name="actorId")
     def actor_id(self) -> Optional[_builtins.int]:
         """
-        (Number) The ID of the actor that can bypass a ruleset.
+        (Number) The ID of the actor that can bypass a ruleset. Some actor types such as `DeployKey` do not have an ID.
         """
         return pulumi.get(self, "actor_id")
@@ -1256,17 +1262,20 @@ class OrganizationRulesetConditions(dict):
         return super().get(key, default)
     def __init__(__self__, *,
-                 ref_name: 'outputs.OrganizationRulesetConditionsRefName',
+                 ref_name: Optional['outputs.OrganizationRulesetConditionsRefName'] = None,
                  repository_ids: Optional[Sequence[_builtins.int]] = None,
                  repository_name: Optional['outputs.OrganizationRulesetConditionsRepositoryName'] = None):
         """
-        :param 'OrganizationRulesetConditionsRefNameArgs' ref_name: (Block List, Min: 1, Max: 1) (see below for nested schema)
+        :param 'OrganizationRulesetConditionsRefNameArgs' ref_name: (Block List, Max: 1) Required for `branch` and `tag` targets. Must NOT be set for `push` targets. (see below for nested schema)
         :param Sequence[_builtins.int] repository_ids: The repository IDs that the ruleset applies to. One of these IDs must match for the condition to pass. Conflicts with `repository_name`.
         :param 'OrganizationRulesetConditionsRepositoryNameArgs' repository_name: Conflicts with `repository_id`. (see below for nested schema)
                One of `repository_id` and `repository_name` must be set for the rule to target any repositories.
+               > **Note:** For `push` targets, do not include `ref_name` in conditions. Push rulesets operate on file content, not on refs.
         """
-        pulumi.set(__self__, "ref_name", ref_name)
+        if ref_name is not None:
+            pulumi.set(__self__, "ref_name", ref_name)
         if repository_ids is not None:
             pulumi.set(__self__, "repository_ids", repository_ids)
         if repository_name is not None:
@@ -1274,9 +1283,9 @@ class OrganizationRulesetConditions(dict):
     @_builtins.property
     @pulumi.getter(name="refName")
-    def ref_name(self) -> 'outputs.OrganizationRulesetConditionsRefName':
+    def ref_name(self) -> Optional['outputs.OrganizationRulesetConditionsRefName']:
         """
-        (Block List, Min: 1, Max: 1) (see below for nested schema)
+        (Block List, Max: 1) Required for `branch` and `tag` targets. Must NOT be set for `push` targets. (see below for nested schema)
         """
         return pulumi.get(self, "ref_name")
@@ -1295,6 +1304,8 @@ class OrganizationRulesetConditions(dict):
         Conflicts with `repository_id`. (see below for nested schema)
         One of `repository_id` and `repository_name` must be set for the rule to target any repositories.
+        > **Note:** For `push` targets, do not include `ref_name` in conditions. Push rulesets operate on file content, not on refs.
         """
         return pulumi.get(self, "repository_name")
@@ -1382,6 +1393,8 @@ class OrganizationRulesetRules(dict):
             suggest = "commit_message_pattern"
         elif key == "committerEmailPattern":
             suggest = "committer_email_pattern"
+        elif key == "copilotCodeReview":
+            suggest = "copilot_code_review"
         elif key == "fileExtensionRestriction":
             suggest = "file_extension_restriction"
         elif key == "filePathRestriction":
@@ -1423,6 +1436,7 @@ class OrganizationRulesetRules(dict):
                  commit_author_email_pattern: Optional['outputs.OrganizationRulesetRulesCommitAuthorEmailPattern'] = None,
                  commit_message_pattern: Optional['outputs.OrganizationRulesetRulesCommitMessagePattern'] = None,
                  committer_email_pattern: Optional['outputs.OrganizationRulesetRulesCommitterEmailPattern'] = None,
+                 copilot_code_review: Optional['outputs.OrganizationRulesetRulesCopilotCodeReview'] = None,
                  creation: Optional[_builtins.bool] = None,
                  deletion: Optional[_builtins.bool] = None,
                  file_extension_restriction: Optional['outputs.OrganizationRulesetRulesFileExtensionRestriction'] = None,
@@ -1443,6 +1457,7 @@ class OrganizationRulesetRules(dict):
         :param 'OrganizationRulesetRulesCommitAuthorEmailPatternArgs' commit_author_email_pattern: (Block List, Max: 1) Parameters to be used for the commit_author_email_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
         :param 'OrganizationRulesetRulesCommitMessagePatternArgs' commit_message_pattern: (Block List, Max: 1) Parameters to be used for the commit_message_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
         :param 'OrganizationRulesetRulesCommitterEmailPatternArgs' committer_email_pattern: (Block List, Max: 1) Parameters to be used for the committer_email_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
+        :param 'OrganizationRulesetRulesCopilotCodeReviewArgs' copilot_code_review: (Block List, Max: 1) Automatically request Copilot code review for new pull requests if the author has access to Copilot code review and their premium requests quota has not reached the limit. (see below for nested schema)
         :param _builtins.bool creation: (Boolean) Only allow users with bypass permission to create matching refs.
         :param _builtins.bool deletion: (Boolean) Only allow users with bypass permissions to delete matching refs.
         :param 'OrganizationRulesetRulesFileExtensionRestrictionArgs' file_extension_restriction: (Block List, Max: 1) Prevent commits that include files with specified file extensions from being pushed to the commit graph. This rule only applies to rulesets with target `push`. (see below for nested schema)
@@ -1467,6 +1482,8 @@ class OrganizationRulesetRules(dict):
             pulumi.set(__self__, "commit_message_pattern", commit_message_pattern)
         if committer_email_pattern is not None:
             pulumi.set(__self__, "committer_email_pattern", committer_email_pattern)
+        if copilot_code_review is not None:
+            pulumi.set(__self__, "copilot_code_review", copilot_code_review)
         if creation is not None:
             pulumi.set(__self__, "creation", creation)
         if deletion is not None:
@@ -1530,6 +1547,14 @@ class OrganizationRulesetRules(dict):
         """
         return pulumi.get(self, "committer_email_pattern")
+    @_builtins.property
+    @pulumi.getter(name="copilotCodeReview")
+    def copilot_code_review(self) -> Optional['outputs.OrganizationRulesetRulesCopilotCodeReview']:
+        """
+        (Block List, Max: 1) Automatically request Copilot code review for new pull requests if the author has access to Copilot code review and their premium requests quota has not reached the limit. (see below for nested schema)
+        """
+        return pulumi.get(self, "copilot_code_review")
     @_builtins.property
     @pulumi.getter
     def creation(self) -> Optional[_builtins.bool]:
@@ -1863,6 +1888,56 @@ class OrganizationRulesetRulesCommitterEmailPattern(dict):
         return pulumi.get(self, "negate")
+@pulumi.output_type
+class OrganizationRulesetRulesCopilotCodeReview(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "reviewDraftPullRequests":
+            suggest = "review_draft_pull_requests"
+        elif key == "reviewOnPush":
+            suggest = "review_on_push"
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in OrganizationRulesetRulesCopilotCodeReview. Access the value via the '{suggest}' property getter instead.")
+    def __getitem__(self, key: str) -> Any:
+        OrganizationRulesetRulesCopilotCodeReview.__key_warning(key)
+        return super().__getitem__(key)
+    def get(self, key: str, default = None) -> Any:
+        OrganizationRulesetRulesCopilotCodeReview.__key_warning(key)
+        return super().get(key, default)
+    def __init__(__self__, *,
+                 review_draft_pull_requests: Optional[_builtins.bool] = None,
+                 review_on_push: Optional[_builtins.bool] = None):
+        """
+        :param _builtins.bool review_draft_pull_requests: Copilot automatically reviews draft pull requests before they are marked as ready for review. Defaults to `false`.
+        :param _builtins.bool review_on_push: Copilot automatically reviews each new push to the pull request. Defaults to `false`.
+        """
+        if review_draft_pull_requests is not None:
+            pulumi.set(__self__, "review_draft_pull_requests", review_draft_pull_requests)
+        if review_on_push is not None:
+            pulumi.set(__self__, "review_on_push", review_on_push)
+    @_builtins.property
+    @pulumi.getter(name="reviewDraftPullRequests")
+    def review_draft_pull_requests(self) -> Optional[_builtins.bool]:
+        """
+        Copilot automatically reviews draft pull requests before they are marked as ready for review. Defaults to `false`.
+        """
+        return pulumi.get(self, "review_draft_pull_requests")
+    @_builtins.property
+    @pulumi.getter(name="reviewOnPush")
+    def review_on_push(self) -> Optional[_builtins.bool]:
+        """
+        Copilot automatically reviews each new push to the pull request. Defaults to `false`.
+        """
+        return pulumi.get(self, "review_on_push")
 @pulumi.output_type
 class OrganizationRulesetRulesFileExtensionRestriction(dict):
     @staticmethod
@@ -2008,7 +2083,9 @@ class OrganizationRulesetRulesPullRequest(dict):
     @staticmethod
     def __key_warning(key: str):
         suggest = None
-        if key == "dismissStaleReviewsOnPush":
+        if key == "allowedMergeMethods":
+            suggest = "allowed_merge_methods"
+        elif key == "dismissStaleReviewsOnPush":
             suggest = "dismiss_stale_reviews_on_push"
         elif key == "requireCodeOwnerReview":
             suggest = "require_code_owner_review"
@@ -2018,6 +2095,8 @@ class OrganizationRulesetRulesPullRequest(dict):
             suggest = "required_approving_review_count"
         elif key == "requiredReviewThreadResolution":
             suggest = "required_review_thread_resolution"
+        elif key == "requiredReviewers":
+            suggest = "required_reviewers"
         if suggest:
             pulumi.log.warn(f"Key '{key}' not found in OrganizationRulesetRulesPullRequest. Access the value via the '{suggest}' property getter instead.")
@@ -2031,18 +2110,24 @@ class OrganizationRulesetRulesPullRequest(dict):
         return super().get(key, default)
     def __init__(__self__, *,
+                 allowed_merge_methods: Optional[Sequence[_builtins.str]] = None,
                  dismiss_stale_reviews_on_push: Optional[_builtins.bool] = None,
                  require_code_owner_review: Optional[_builtins.bool] = None,
                  require_last_push_approval: Optional[_builtins.bool] = None,
                  required_approving_review_count: Optional[_builtins.int] = None,
-                 required_review_thread_resolution: Optional[_builtins.bool] = None):
+                 required_review_thread_resolution: Optional[_builtins.bool] = None,
+                 required_reviewers: Optional[Sequence['outputs.OrganizationRulesetRulesPullRequestRequiredReviewer']] = None):
         """
+        :param Sequence[_builtins.str] allowed_merge_methods: Array of allowed merge methods. Allowed values include `merge`, `squash`, and `rebase`. At least one option must be enabled.
         :param _builtins.bool dismiss_stale_reviews_on_push: New, reviewable commits pushed will dismiss previous pull request review approvals. Defaults to `false`.
         :param _builtins.bool require_code_owner_review: Require an approving review in pull requests that modify files that have a designated code owner. Defaults to `false`.
         :param _builtins.bool require_last_push_approval: Whether the most recent reviewable push must be approved by someone other than the person who pushed it. Defaults to `false`.
         :param _builtins.int required_approving_review_count: The number of approving reviews that are required before a pull request can be merged. Defaults to `0`.
         :param _builtins.bool required_review_thread_resolution: All conversations on code must be resolved before a pull request can be merged. Defaults to `false`.
+        :param Sequence['OrganizationRulesetRulesPullRequestRequiredReviewerArgs'] required_reviewers: Require specific reviewers to approve pull requests targeting matching branches. Note: This feature is in beta and subject to change.
         """
+        if allowed_merge_methods is not None:
+            pulumi.set(__self__, "allowed_merge_methods", allowed_merge_methods)
         if dismiss_stale_reviews_on_push is not None:
             pulumi.set(__self__, "dismiss_stale_reviews_on_push", dismiss_stale_reviews_on_push)
         if require_code_owner_review is not None:
@@ -2053,6 +2138,16 @@ class OrganizationRulesetRulesPullRequest(dict):
             pulumi.set(__self__, "required_approving_review_count", required_approving_review_count)
         if required_review_thread_resolution is not None:
             pulumi.set(__self__, "required_review_thread_resolution", required_review_thread_resolution)
+        if required_reviewers is not None:
+            pulumi.set(__self__, "required_reviewers", required_reviewers)
+    @_builtins.property
+    @pulumi.getter(name="allowedMergeMethods")
+    def allowed_merge_methods(self) -> Optional[Sequence[_builtins.str]]:
+        """
+        Array of allowed merge methods. Allowed values include `merge`, `squash`, and `rebase`. At least one option must be enabled.
+        """
+        return pulumi.get(self, "allowed_merge_methods")
     @_builtins.property
     @pulumi.getter(name="dismissStaleReviewsOnPush")
@@ -2094,6 +2189,102 @@ class OrganizationRulesetRulesPullRequest(dict):
         """
         return pulumi.get(self, "required_review_thread_resolution")
+    @_builtins.property
+    @pulumi.getter(name="requiredReviewers")
+    def required_reviewers(self) -> Optional[Sequence['outputs.OrganizationRulesetRulesPullRequestRequiredReviewer']]:
+        """
+        Require specific reviewers to approve pull requests targeting matching branches. Note: This feature is in beta and subject to change.
+        """
+        return pulumi.get(self, "required_reviewers")
+@pulumi.output_type
+class OrganizationRulesetRulesPullRequestRequiredReviewer(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "filePatterns":
+            suggest = "file_patterns"
+        elif key == "minimumApprovals":
+            suggest = "minimum_approvals"
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in OrganizationRulesetRulesPullRequestRequiredReviewer. Access the value via the '{suggest}' property getter instead.")
+    def __getitem__(self, key: str) -> Any:
+        OrganizationRulesetRulesPullRequestRequiredReviewer.__key_warning(key)
+        return super().__getitem__(key)
+    def get(self, key: str, default = None) -> Any:
+        OrganizationRulesetRulesPullRequestRequiredReviewer.__key_warning(key)
+        return super().get(key, default)
+    def __init__(__self__, *,
+                 file_patterns: Sequence[_builtins.str],
+                 minimum_approvals: _builtins.int,
+                 reviewer: 'outputs.OrganizationRulesetRulesPullRequestRequiredReviewerReviewer'):
+        """
+        :param Sequence[_builtins.str] file_patterns: File patterns (fnmatch syntax) that this reviewer must approve.
+        :param _builtins.int minimum_approvals: Minimum number of approvals required from this reviewer. Set to 0 to make approval optional.
+        :param 'OrganizationRulesetRulesPullRequestRequiredReviewerReviewerArgs' reviewer: The reviewer that must review matching files.
+        """
+        pulumi.set(__self__, "file_patterns", file_patterns)
+        pulumi.set(__self__, "minimum_approvals", minimum_approvals)
+        pulumi.set(__self__, "reviewer", reviewer)
+    @_builtins.property
+    @pulumi.getter(name="filePatterns")
+    def file_patterns(self) -> Sequence[_builtins.str]:
+        """
+        File patterns (fnmatch syntax) that this reviewer must approve.
+        """
+        return pulumi.get(self, "file_patterns")
+    @_builtins.property
+    @pulumi.getter(name="minimumApprovals")
+    def minimum_approvals(self) -> _builtins.int:
+        """
+        Minimum number of approvals required from this reviewer. Set to 0 to make approval optional.
+        """
+        return pulumi.get(self, "minimum_approvals")
+    @_builtins.property
+    @pulumi.getter
+    def reviewer(self) -> 'outputs.OrganizationRulesetRulesPullRequestRequiredReviewerReviewer':
+        """
+        The reviewer that must review matching files.
+        """
+        return pulumi.get(self, "reviewer")
+@pulumi.output_type
+class OrganizationRulesetRulesPullRequestRequiredReviewerReviewer(dict):
+    def __init__(__self__, *,
+                 id: _builtins.int,
+                 type: _builtins.str):
+        """
+        :param _builtins.int id: The ID of the reviewer that must review.
+        :param _builtins.str type: The type of reviewer. Currently only `Team` is supported.
+        """
+        pulumi.set(__self__, "id", id)
+        pulumi.set(__self__, "type", type)
+    @_builtins.property
+    @pulumi.getter
+    def id(self) -> _builtins.int:
+        """
+        The ID of the reviewer that must review.
+        """
+        return pulumi.get(self, "id")
+    @_builtins.property
+    @pulumi.getter
+    def type(self) -> _builtins.str:
+        """
+        The type of reviewer. Currently only `Team` is supported.
+        """
+        return pulumi.get(self, "type")
 @pulumi.output_type
 class OrganizationRulesetRulesRequiredCodeScanning(dict):
@@ -2900,9 +3091,9 @@ class RepositoryRulesetBypassActor(dict):
                > Note: at the time of writing this, the following actor types correspond to the following actor IDs:
-               * `OrganizationAdmin` > `1`
-               * `RepositoryRole` (This is the actor type, the following are the base repository roles and their associated IDs.)
-        :param _builtins.int actor_id: The ID of the actor that can bypass a ruleset. If `actor_type` is `Integration`, `actor_id` is a GitHub App ID. App ID can be obtained by following instructions from the [Get an App API docs](https://docs.github.com/en/rest/apps/apps?apiVersion=2022-11-28#get-an-app)
+               - `OrganizationAdmin` > `1`
+               - `RepositoryRole` (This is the actor type, the following are the base repository roles and their associated IDs.)
+        :param _builtins.int actor_id: (Number) The ID of the actor that can bypass a ruleset. If `actor_type` is `Integration`, `actor_id` is a GitHub App ID. App ID can be obtained by following instructions from the [Get an App API docs](https://docs.github.com/en/rest/apps/apps?apiVersion=2022-11-28#get-an-app). Some actor types such as `DeployKey` do not have an ID.
         """
         pulumi.set(__self__, "actor_type", actor_type)
         pulumi.set(__self__, "bypass_mode", bypass_mode)
@@ -2925,8 +3116,8 @@ class RepositoryRulesetBypassActor(dict):
         > Note: at the time of writing this, the following actor types correspond to the following actor IDs:
-        * `OrganizationAdmin` > `1`
-        * `RepositoryRole` (This is the actor type, the following are the base repository roles and their associated IDs.)
+        - `OrganizationAdmin` > `1`
+        - `RepositoryRole` (This is the actor type, the following are the base repository roles and their associated IDs.)
         """
         return pulumi.get(self, "bypass_mode")
@@ -2934,7 +3125,7 @@ class RepositoryRulesetBypassActor(dict):
     @pulumi.getter(name="actorId")
     def actor_id(self) -> Optional[_builtins.int]:
         """
-        The ID of the actor that can bypass a ruleset. If `actor_type` is `Integration`, `actor_id` is a GitHub App ID. App ID can be obtained by following instructions from the [Get an App API docs](https://docs.github.com/en/rest/apps/apps?apiVersion=2022-11-28#get-an-app)
+        (Number) The ID of the actor that can bypass a ruleset. If `actor_type` is `Integration`, `actor_id` is a GitHub App ID. App ID can be obtained by following instructions from the [Get an App API docs](https://docs.github.com/en/rest/apps/apps?apiVersion=2022-11-28#get-an-app). Some actor types such as `DeployKey` do not have an ID.
         """
         return pulumi.get(self, "actor_id")
@@ -2961,7 +3152,9 @@ class RepositoryRulesetConditions(dict):
     def __init__(__self__, *,
                  ref_name: 'outputs.RepositoryRulesetConditionsRefName'):
         """
-        :param 'RepositoryRulesetConditionsRefNameArgs' ref_name: (Block List, Min: 1, Max: 1) (see below for nested schema)
+        :param 'RepositoryRulesetConditionsRefNameArgs' ref_name: (Block List, Max: 1) Required for `branch` and `tag` targets. Must NOT be set for `push` targets. (see below for nested schema)
+               > **Note:** For `push` targets, do not include `ref_name` in conditions. Push rulesets operate on file content, not on refs. The `conditions` block is optional for push targets.
         """
         pulumi.set(__self__, "ref_name", ref_name)
@@ -2969,7 +3162,9 @@ class RepositoryRulesetConditions(dict):
     @pulumi.getter(name="refName")
     def ref_name(self) -> 'outputs.RepositoryRulesetConditionsRefName':
         """
-        (Block List, Min: 1, Max: 1) (see below for nested schema)
+        (Block List, Max: 1) Required for `branch` and `tag` targets. Must NOT be set for `push` targets. (see below for nested schema)
+        > **Note:** For `push` targets, do not include `ref_name` in conditions. Push rulesets operate on file content, not on refs. The `conditions` block is optional for push targets.
         """
         return pulumi.get(self, "ref_name")
@@ -3016,6 +3211,8 @@ class RepositoryRulesetRules(dict):
             suggest = "commit_message_pattern"
         elif key == "committerEmailPattern":
             suggest = "committer_email_pattern"
+        elif key == "copilotCodeReview":
+            suggest = "copilot_code_review"
         elif key == "fileExtensionRestriction":
             suggest = "file_extension_restriction"
         elif key == "filePathRestriction":
@@ -3061,6 +3258,7 @@ class RepositoryRulesetRules(dict):
                  commit_author_email_pattern: Optional['outputs.RepositoryRulesetRulesCommitAuthorEmailPattern'] = None,
                  commit_message_pattern: Optional['outputs.RepositoryRulesetRulesCommitMessagePattern'] = None,
                  committer_email_pattern: Optional['outputs.RepositoryRulesetRulesCommitterEmailPattern'] = None,
+                 copilot_code_review: Optional['outputs.RepositoryRulesetRulesCopilotCodeReview'] = None,
                  creation: Optional[_builtins.bool] = None,
                  deletion: Optional[_builtins.bool] = None,
                  file_extension_restriction: Optional['outputs.RepositoryRulesetRulesFileExtensionRestriction'] = None,
@@ -3083,6 +3281,7 @@ class RepositoryRulesetRules(dict):
         :param 'RepositoryRulesetRulesCommitAuthorEmailPatternArgs' commit_author_email_pattern: (Block List, Max: 1) Parameters to be used for the commit_author_email_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
         :param 'RepositoryRulesetRulesCommitMessagePatternArgs' commit_message_pattern: (Block List, Max: 1) Parameters to be used for the commit_message_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
         :param 'RepositoryRulesetRulesCommitterEmailPatternArgs' committer_email_pattern: (Block List, Max: 1) Parameters to be used for the committer_email_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
+        :param 'RepositoryRulesetRulesCopilotCodeReviewArgs' copilot_code_review: (Block List, Max: 1) Automatically request Copilot code review for new pull requests if the author has access to Copilot code review and their premium requests quota has not reached the limit. (see below for nested schema)
         :param _builtins.bool creation: (Boolean) Only allow users with bypass permission to create matching refs.
         :param _builtins.bool deletion: (Boolean) Only allow users with bypass permissions to delete matching refs.
         :param 'RepositoryRulesetRulesFileExtensionRestrictionArgs' file_extension_restriction: (Block List, Max: 1) Prevent commits that include files with specified file extensions from being pushed to the commit graph. This rule only applies to rulesets with target `push`. (see below for nested schema)
@@ -3109,6 +3308,8 @@ class RepositoryRulesetRules(dict):
             pulumi.set(__self__, "commit_message_pattern", commit_message_pattern)
         if committer_email_pattern is not None:
             pulumi.set(__self__, "committer_email_pattern", committer_email_pattern)
+        if copilot_code_review is not None:
+            pulumi.set(__self__, "copilot_code_review", copilot_code_review)
         if creation is not None:
             pulumi.set(__self__, "creation", creation)
         if deletion is not None:
@@ -3176,6 +3377,14 @@ class RepositoryRulesetRules(dict):
         """
         return pulumi.get(self, "committer_email_pattern")
+    @_builtins.property
+    @pulumi.getter(name="copilotCodeReview")
+    def copilot_code_review(self) -> Optional['outputs.RepositoryRulesetRulesCopilotCodeReview']:
+        """
+        (Block List, Max: 1) Automatically request Copilot code review for new pull requests if the author has access to Copilot code review and their premium requests quota has not reached the limit. (see below for nested schema)
+        """
+        return pulumi.get(self, "copilot_code_review")
     @_builtins.property
     @pulumi.getter
     def creation(self) -> Optional[_builtins.bool]:
@@ -3525,6 +3734,56 @@ class RepositoryRulesetRulesCommitterEmailPattern(dict):
         return pulumi.get(self, "negate")
+@pulumi.output_type
+class RepositoryRulesetRulesCopilotCodeReview(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "reviewDraftPullRequests":
+            suggest = "review_draft_pull_requests"
+        elif key == "reviewOnPush":
+            suggest = "review_on_push"
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in RepositoryRulesetRulesCopilotCodeReview. Access the value via the '{suggest}' property getter instead.")
+    def __getitem__(self, key: str) -> Any:
+        RepositoryRulesetRulesCopilotCodeReview.__key_warning(key)
+        return super().__getitem__(key)
+    def get(self, key: str, default = None) -> Any:
+        RepositoryRulesetRulesCopilotCodeReview.__key_warning(key)
+        return super().get(key, default)
+    def __init__(__self__, *,
+                 review_draft_pull_requests: Optional[_builtins.bool] = None,
+                 review_on_push: Optional[_builtins.bool] = None):
+        """
+        :param _builtins.bool review_draft_pull_requests: Copilot automatically reviews draft pull requests before they are marked as ready for review. Defaults to `false`.
+        :param _builtins.bool review_on_push: Copilot automatically reviews each new push to the pull request. Defaults to `false`.
+        """
+        if review_draft_pull_requests is not None:
+            pulumi.set(__self__, "review_draft_pull_requests", review_draft_pull_requests)
+        if review_on_push is not None:
+            pulumi.set(__self__, "review_on_push", review_on_push)
+    @_builtins.property
+    @pulumi.getter(name="reviewDraftPullRequests")
+    def review_draft_pull_requests(self) -> Optional[_builtins.bool]:
+        """
+        Copilot automatically reviews draft pull requests before they are marked as ready for review. Defaults to `false`.
+        """
+        return pulumi.get(self, "review_draft_pull_requests")
+    @_builtins.property
+    @pulumi.getter(name="reviewOnPush")
+    def review_on_push(self) -> Optional[_builtins.bool]:
+        """
+        Copilot automatically reviews each new push to the pull request. Defaults to `false`.
+        """
+        return pulumi.get(self, "review_on_push")
 @pulumi.output_type
 class RepositoryRulesetRulesFileExtensionRestriction(dict):
     @staticmethod
@@ -3790,7 +4049,9 @@ class RepositoryRulesetRulesPullRequest(dict):
     @staticmethod
     def __key_warning(key: str):
         suggest = None
-        if key == "dismissStaleReviewsOnPush":
+        if key == "allowedMergeMethods":
+            suggest = "allowed_merge_methods"
+        elif key == "dismissStaleReviewsOnPush":
             suggest = "dismiss_stale_reviews_on_push"
         elif key == "requireCodeOwnerReview":
             suggest = "require_code_owner_review"
@@ -3800,6 +4061,8 @@ class RepositoryRulesetRulesPullRequest(dict):
             suggest = "required_approving_review_count"
         elif key == "requiredReviewThreadResolution":
             suggest = "required_review_thread_resolution"
+        elif key == "requiredReviewers":
+            suggest = "required_reviewers"
         if suggest:
             pulumi.log.warn(f"Key '{key}' not found in RepositoryRulesetRulesPullRequest. Access the value via the '{suggest}' property getter instead.")
@@ -3813,18 +4076,24 @@ class RepositoryRulesetRulesPullRequest(dict):
         return super().get(key, default)
     def __init__(__self__, *,
+                 allowed_merge_methods: Optional[Sequence[_builtins.str]] = None,
                  dismiss_stale_reviews_on_push: Optional[_builtins.bool] = None,
                  require_code_owner_review: Optional[_builtins.bool] = None,
                  require_last_push_approval: Optional[_builtins.bool] = None,
                  required_approving_review_count: Optional[_builtins.int] = None,
-                 required_review_thread_resolution: Optional[_builtins.bool] = None):
+                 required_review_thread_resolution: Optional[_builtins.bool] = None,
+                 required_reviewers: Optional[Sequence['outputs.RepositoryRulesetRulesPullRequestRequiredReviewer']] = None):
         """
+        :param Sequence[_builtins.str] allowed_merge_methods: Array of allowed merge methods. Allowed values include `merge`, `squash`, and `rebase`. At least one option must be enabled.
         :param _builtins.bool dismiss_stale_reviews_on_push: New, reviewable commits pushed will dismiss previous pull request review approvals. Defaults to `false`.
         :param _builtins.bool require_code_owner_review: Require an approving review in pull requests that modify files that have a designated code owner. Defaults to `false`.
         :param _builtins.bool require_last_push_approval: Whether the most recent reviewable push must be approved by someone other than the person who pushed it. Defaults to `false`.
         :param _builtins.int required_approving_review_count: The number of approving reviews that are required before a pull request can be merged. Defaults to `0`.
         :param _builtins.bool required_review_thread_resolution: All conversations on code must be resolved before a pull request can be merged. Defaults to `false`.
+        :param Sequence['RepositoryRulesetRulesPullRequestRequiredReviewerArgs'] required_reviewers: Require specific reviewers to approve pull requests targeting matching branches. Note: This feature is in beta and subject to change.
         """
+        if allowed_merge_methods is not None:
+            pulumi.set(__self__, "allowed_merge_methods", allowed_merge_methods)
         if dismiss_stale_reviews_on_push is not None:
             pulumi.set(__self__, "dismiss_stale_reviews_on_push", dismiss_stale_reviews_on_push)
         if require_code_owner_review is not None:
@@ -3835,6 +4104,16 @@ class RepositoryRulesetRulesPullRequest(dict):
             pulumi.set(__self__, "required_approving_review_count", required_approving_review_count)
         if required_review_thread_resolution is not None:
             pulumi.set(__self__, "required_review_thread_resolution", required_review_thread_resolution)
+        if required_reviewers is not None:
+            pulumi.set(__self__, "required_reviewers", required_reviewers)
+    @_builtins.property
+    @pulumi.getter(name="allowedMergeMethods")
+    def allowed_merge_methods(self) -> Optional[Sequence[_builtins.str]]:
+        """
+        Array of allowed merge methods. Allowed values include `merge`, `squash`, and `rebase`. At least one option must be enabled.
+        """
+        return pulumi.get(self, "allowed_merge_methods")
     @_builtins.property
     @pulumi.getter(name="dismissStaleReviewsOnPush")
@@ -3876,6 +4155,102 @@ class RepositoryRulesetRulesPullRequest(dict):
         """
         return pulumi.get(self, "required_review_thread_resolution")
+    @_builtins.property
+    @pulumi.getter(name="requiredReviewers")
+    def required_reviewers(self) -> Optional[Sequence['outputs.RepositoryRulesetRulesPullRequestRequiredReviewer']]:
+        """
+        Require specific reviewers to approve pull requests targeting matching branches. Note: This feature is in beta and subject to change.
+        """
+        return pulumi.get(self, "required_reviewers")
+@pulumi.output_type
+class RepositoryRulesetRulesPullRequestRequiredReviewer(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "filePatterns":
+            suggest = "file_patterns"
+        elif key == "minimumApprovals":
+            suggest = "minimum_approvals"
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in RepositoryRulesetRulesPullRequestRequiredReviewer. Access the value via the '{suggest}' property getter instead.")
+    def __getitem__(self, key: str) -> Any:
+        RepositoryRulesetRulesPullRequestRequiredReviewer.__key_warning(key)
+        return super().__getitem__(key)
+    def get(self, key: str, default = None) -> Any:
+        RepositoryRulesetRulesPullRequestRequiredReviewer.__key_warning(key)
+        return super().get(key, default)
+    def __init__(__self__, *,
+                 file_patterns: Sequence[_builtins.str],
+                 minimum_approvals: _builtins.int,
+                 reviewer: 'outputs.RepositoryRulesetRulesPullRequestRequiredReviewerReviewer'):
+        """
+        :param Sequence[_builtins.str] file_patterns: File patterns (fnmatch syntax) that this reviewer must approve.
+        :param _builtins.int minimum_approvals: Minimum number of approvals required from this reviewer. Set to 0 to make approval optional.
+        :param 'RepositoryRulesetRulesPullRequestRequiredReviewerReviewerArgs' reviewer: The reviewer that must review matching files.
+        """
+        pulumi.set(__self__, "file_patterns", file_patterns)
+        pulumi.set(__self__, "minimum_approvals", minimum_approvals)
+        pulumi.set(__self__, "reviewer", reviewer)
+    @_builtins.property
+    @pulumi.getter(name="filePatterns")
+    def file_patterns(self) -> Sequence[_builtins.str]:
+        """
+        File patterns (fnmatch syntax) that this reviewer must approve.
+        """
+        return pulumi.get(self, "file_patterns")
+    @_builtins.property
+    @pulumi.getter(name="minimumApprovals")
+    def minimum_approvals(self) -> _builtins.int:
+        """
+        Minimum number of approvals required from this reviewer. Set to 0 to make approval optional.
+        """
+        return pulumi.get(self, "minimum_approvals")
+    @_builtins.property
+    @pulumi.getter
+    def reviewer(self) -> 'outputs.RepositoryRulesetRulesPullRequestRequiredReviewerReviewer':
+        """
+        The reviewer that must review matching files.
+        """
+        return pulumi.get(self, "reviewer")
+@pulumi.output_type
+class RepositoryRulesetRulesPullRequestRequiredReviewerReviewer(dict):
+    def __init__(__self__, *,
+                 id: _builtins.int,
+                 type: _builtins.str):
+        """
+        :param _builtins.int id: The ID of the reviewer that must review.
+        :param _builtins.str type: The type of reviewer. Currently only `Team` is supported.
+        """
+        pulumi.set(__self__, "id", id)
+        pulumi.set(__self__, "type", type)
+    @_builtins.property
+    @pulumi.getter
+    def id(self) -> _builtins.int:
+        """
+        The ID of the reviewer that must review.
+        """
+        return pulumi.get(self, "id")
+    @_builtins.property
+    @pulumi.getter
+    def type(self) -> _builtins.str:
+        """
+        The type of reviewer. Currently only `Team` is supported.
+        """
+        return pulumi.get(self, "type")
 @pulumi.output_type
 class RepositoryRulesetRulesRequiredCodeScanning(dict):
@@ -4334,7 +4709,7 @@ class RepositorySecurityAndAnalysisSecretScanningAiDetection(dict):
     def __init__(__self__, *,
                  status: _builtins.str):
         """
-        :param _builtins.str status: The GitHub Pages site's build status e.g. `building` or `built`.
+        :param _builtins.str status: Set to `enabled` to enable secret scanning AI detection on the repository. Can be `enabled` or `disabled`. If set to `enabled`, the repository's visibility must be `public`, `security_and_analysis[0].advanced_security[0].status` must also be set to `enabled`, or your Organization must have split licensing for Advanced security.
         """
         pulumi.set(__self__, "status", status)
@@ -4342,7 +4717,7 @@ class RepositorySecurityAndAnalysisSecretScanningAiDetection(dict):
     @pulumi.getter
     def status(self) -> _builtins.str:
         """
-        The GitHub Pages site's build status e.g. `building` or `built`.
+        Set to `enabled` to enable secret scanning AI detection on the repository. Can be `enabled` or `disabled`. If set to `enabled`, the repository's visibility must be `public`, `security_and_analysis[0].advanced_security[0].status` must also be set to `enabled`, or your Organization must have split licensing for Advanced security.
         """
         return pulumi.get(self, "status")
@@ -4410,6 +4785,8 @@ class RepositoryTemplate(dict):
         :param _builtins.str owner: The GitHub organization or user the template repository is owned by.
         :param _builtins.str repository: The name of the template repository.
         :param _builtins.bool include_all_branches: Whether the new repository should include all the branches from the template repository (defaults to false, which includes only the default branch from the template).
+               > **Note on `internal` visibility with templates**: When creating a repository from a template with `visibility = "internal"`, the provider uses a two-step process due to GitHub API limitations. The template creation API only supports a `private` boolean parameter. Therefore, repositories with `visibility = "internal"` are initially created as private and then immediately updated to internal visibility. This ensures internal repositories are never exposed publicly during creation.
         """
         pulumi.set(__self__, "owner", owner)
         pulumi.set(__self__, "repository", repository)
@@ -4437,6 +4814,8 @@ class RepositoryTemplate(dict):
     def include_all_branches(self) -> Optional[_builtins.bool]:
         """
         Whether the new repository should include all the branches from the template repository (defaults to false, which includes only the default branch from the template).
+        > **Note on `internal` visibility with templates**: When creating a repository from a template with `visibility = "internal"`, the provider uses a two-step process due to GitHub API limitations. The template creation API only supports a `private` boolean parameter. Therefore, repositories with `visibility = "internal"` are initially created as private and then immediately updated to internal visibility. This ensures internal repositories are never exposed publicly during creation.
         """
         return pulumi.get(self, "include_all_branches")

pulumi-github 6.11.0a1768542226__py3-none-any.whl → 6.12.0__py3-none-any.whl

pulumi-github 6.11.0a1768542226py3-none-any.whl → 6.12.0py3-none-any.whl