pulumi-github 6.11.0a1768966924__py3-none-any.whl → 6.12.0__py3-none-any.whl

pulumi_github/dependabot_organization_secret.py

@@ -22,23 +22,29 @@ class DependabotOrganizationSecretArgs:
                  secret_name: pulumi.Input[_builtins.str],
                  visibility: pulumi.Input[_builtins.str],
                  encrypted_value: Optional[pulumi.Input[_builtins.str]] = None,
+                 key_id: Optional[pulumi.Input[_builtins.str]] = None,
                  plaintext_value: Optional[pulumi.Input[_builtins.str]] = None,
                  selected_repository_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.int]]]] = None):
         """
         The set of arguments for constructing a DependabotOrganizationSecret resource.
-        :param pulumi.Input[_builtins.str] secret_name: Name of the secret
-        :param pulumi.Input[_builtins.str] visibility: Configures the access that repositories have to the organization secret.
-               Must be one of `all`, `private`, `selected`. `selected_repository_ids` is required if set to `selected`.
+        :param pulumi.Input[_builtins.str] secret_name: Name of the secret.
+        :param pulumi.Input[_builtins.str] visibility: Configures the access that repositories have to the organization secret; must be one of `all`, `private`, or `selected`.
         :param pulumi.Input[_builtins.str] encrypted_value: Encrypted value of the secret using the GitHub public key in Base64 format.
-        :param pulumi.Input[_builtins.str] plaintext_value: Plaintext value of the secret to be encrypted
-        :param pulumi.Input[Sequence[pulumi.Input[_builtins.int]]] selected_repository_ids: An array of repository ids that can access the organization secret.
+        :param pulumi.Input[_builtins.str] key_id: ID of the public key used to encrypt the secret. This should be provided when setting `encrypted_value`; if it isn't then the current public key will be looked up, which could cause a missmatch. This conflicts with `plaintext_value`.
+        :param pulumi.Input[_builtins.str] plaintext_value: Plaintext value of the secret to be encrypted.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.int]]] selected_repository_ids: An array of repository IDs that can access the organization variable; this requires `visibility` to be set to `selected`.
         """
         pulumi.set(__self__, "secret_name", secret_name)
         pulumi.set(__self__, "visibility", visibility)
         if encrypted_value is not None:
             pulumi.set(__self__, "encrypted_value", encrypted_value)
+        if key_id is not None:
+            pulumi.set(__self__, "key_id", key_id)
         if plaintext_value is not None:
             pulumi.set(__self__, "plaintext_value", plaintext_value)
+        if selected_repository_ids is not None:
+            warnings.warn("""This field is deprecated and will be removed in a future release. Please use the `DependabotOrganizationSecretRepositories` or `DependabotOrganizationSecretRepository` resources to manage repository access to organization secrets.""", DeprecationWarning)
+            pulumi.log.warn("""selected_repository_ids is deprecated: This field is deprecated and will be removed in a future release. Please use the `DependabotOrganizationSecretRepositories` or `DependabotOrganizationSecretRepository` resources to manage repository access to organization secrets.""")
         if selected_repository_ids is not None:
             pulumi.set(__self__, "selected_repository_ids", selected_repository_ids)
 
@@ -46,7 +52,7 @@ class DependabotOrganizationSecretArgs:
     @pulumi.getter(name="secretName")
     def secret_name(self) -> pulumi.Input[_builtins.str]:
         """
-        Name of the secret
+        Name of the secret.
         """
         return pulumi.get(self, "secret_name")
 
@@ -58,8 +64,7 @@ class DependabotOrganizationSecretArgs:
     @pulumi.getter
     def visibility(self) -> pulumi.Input[_builtins.str]:
         """
-        Configures the access that repositories have to the organization secret.
-        Must be one of `all`, `private`, `selected`. `selected_repository_ids` is required if set to `selected`.
+        Configures the access that repositories have to the organization secret; must be one of `all`, `private`, or `selected`.
         """
         return pulumi.get(self, "visibility")
 
@@ -79,11 +84,23 @@ class DependabotOrganizationSecretArgs:
     def encrypted_value(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "encrypted_value", value)
 
+    @_builtins.property
+    @pulumi.getter(name="keyId")
+    def key_id(self) -> Optional[pulumi.Input[_builtins.str]]:
+        """
+        ID of the public key used to encrypt the secret. This should be provided when setting `encrypted_value`; if it isn't then the current public key will be looked up, which could cause a missmatch. This conflicts with `plaintext_value`.
+        """
+        return pulumi.get(self, "key_id")
+
+    @key_id.setter
+    def key_id(self, value: Optional[pulumi.Input[_builtins.str]]):
+        pulumi.set(self, "key_id", value)
+
     @_builtins.property
     @pulumi.getter(name="plaintextValue")
     def plaintext_value(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
-        Plaintext value of the secret to be encrypted
+        Plaintext value of the secret to be encrypted.
         """
         return pulumi.get(self, "plaintext_value")
 
@@ -93,9 +110,10 @@ class DependabotOrganizationSecretArgs:
 
     @_builtins.property
     @pulumi.getter(name="selectedRepositoryIds")
+    @_utilities.deprecated("""This field is deprecated and will be removed in a future release. Please use the `DependabotOrganizationSecretRepositories` or `DependabotOrganizationSecretRepository` resources to manage repository access to organization secrets.""")
     def selected_repository_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.int]]]]:
         """
-        An array of repository ids that can access the organization secret.
+        An array of repository IDs that can access the organization variable; this requires `visibility` to be set to `selected`.
         """
         return pulumi.get(self, "selected_repository_ids")
 
@@ -109,30 +127,40 @@ class _DependabotOrganizationSecretState:
     def __init__(__self__, *,
                  created_at: Optional[pulumi.Input[_builtins.str]] = None,
                  encrypted_value: Optional[pulumi.Input[_builtins.str]] = None,
+                 key_id: Optional[pulumi.Input[_builtins.str]] = None,
                  plaintext_value: Optional[pulumi.Input[_builtins.str]] = None,
+                 remote_updated_at: Optional[pulumi.Input[_builtins.str]] = None,
                  secret_name: Optional[pulumi.Input[_builtins.str]] = None,
                  selected_repository_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.int]]]] = None,
                  updated_at: Optional[pulumi.Input[_builtins.str]] = None,
                  visibility: Optional[pulumi.Input[_builtins.str]] = None):
         """
         Input properties used for looking up and filtering DependabotOrganizationSecret resources.
-        :param pulumi.Input[_builtins.str] created_at: Date of dependabot_secret creation.
+        :param pulumi.Input[_builtins.str] created_at: Date the secret was created.
         :param pulumi.Input[_builtins.str] encrypted_value: Encrypted value of the secret using the GitHub public key in Base64 format.
-        :param pulumi.Input[_builtins.str] plaintext_value: Plaintext value of the secret to be encrypted
-        :param pulumi.Input[_builtins.str] secret_name: Name of the secret
-        :param pulumi.Input[Sequence[pulumi.Input[_builtins.int]]] selected_repository_ids: An array of repository ids that can access the organization secret.
-        :param pulumi.Input[_builtins.str] updated_at: Date of dependabot_secret update.
-        :param pulumi.Input[_builtins.str] visibility: Configures the access that repositories have to the organization secret.
-               Must be one of `all`, `private`, `selected`. `selected_repository_ids` is required if set to `selected`.
+        :param pulumi.Input[_builtins.str] key_id: ID of the public key used to encrypt the secret. This should be provided when setting `encrypted_value`; if it isn't then the current public key will be looked up, which could cause a missmatch. This conflicts with `plaintext_value`.
+        :param pulumi.Input[_builtins.str] plaintext_value: Plaintext value of the secret to be encrypted.
+        :param pulumi.Input[_builtins.str] remote_updated_at: Date the secret was last updated in GitHub.
+        :param pulumi.Input[_builtins.str] secret_name: Name of the secret.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.int]]] selected_repository_ids: An array of repository IDs that can access the organization variable; this requires `visibility` to be set to `selected`.
+        :param pulumi.Input[_builtins.str] updated_at: Date the secret was last updated by the provider.
+        :param pulumi.Input[_builtins.str] visibility: Configures the access that repositories have to the organization secret; must be one of `all`, `private`, or `selected`.
         """
         if created_at is not None:
             pulumi.set(__self__, "created_at", created_at)
         if encrypted_value is not None:
             pulumi.set(__self__, "encrypted_value", encrypted_value)
+        if key_id is not None:
+            pulumi.set(__self__, "key_id", key_id)
         if plaintext_value is not None:
             pulumi.set(__self__, "plaintext_value", plaintext_value)
+        if remote_updated_at is not None:
+            pulumi.set(__self__, "remote_updated_at", remote_updated_at)
         if secret_name is not None:
             pulumi.set(__self__, "secret_name", secret_name)
+        if selected_repository_ids is not None:
+            warnings.warn("""This field is deprecated and will be removed in a future release. Please use the `DependabotOrganizationSecretRepositories` or `DependabotOrganizationSecretRepository` resources to manage repository access to organization secrets.""", DeprecationWarning)
+            pulumi.log.warn("""selected_repository_ids is deprecated: This field is deprecated and will be removed in a future release. Please use the `DependabotOrganizationSecretRepositories` or `DependabotOrganizationSecretRepository` resources to manage repository access to organization secrets.""")
         if selected_repository_ids is not None:
             pulumi.set(__self__, "selected_repository_ids", selected_repository_ids)
         if updated_at is not None:
@@ -144,7 +172,7 @@ class _DependabotOrganizationSecretState:
     @pulumi.getter(name="createdAt")
     def created_at(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
-        Date of dependabot_secret creation.
+        Date the secret was created.
         """
         return pulumi.get(self, "created_at")
 
@@ -164,11 +192,23 @@ class _DependabotOrganizationSecretState:
     def encrypted_value(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "encrypted_value", value)
 
+    @_builtins.property
+    @pulumi.getter(name="keyId")
+    def key_id(self) -> Optional[pulumi.Input[_builtins.str]]:
+        """
+        ID of the public key used to encrypt the secret. This should be provided when setting `encrypted_value`; if it isn't then the current public key will be looked up, which could cause a missmatch. This conflicts with `plaintext_value`.
+        """
+        return pulumi.get(self, "key_id")
+
+    @key_id.setter
+    def key_id(self, value: Optional[pulumi.Input[_builtins.str]]):
+        pulumi.set(self, "key_id", value)
+
     @_builtins.property
     @pulumi.getter(name="plaintextValue")
     def plaintext_value(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
-        Plaintext value of the secret to be encrypted
+        Plaintext value of the secret to be encrypted.
         """
         return pulumi.get(self, "plaintext_value")
 
@@ -176,11 +216,23 @@ class _DependabotOrganizationSecretState:
     def plaintext_value(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "plaintext_value", value)
 
+    @_builtins.property
+    @pulumi.getter(name="remoteUpdatedAt")
+    def remote_updated_at(self) -> Optional[pulumi.Input[_builtins.str]]:
+        """
+        Date the secret was last updated in GitHub.
+        """
+        return pulumi.get(self, "remote_updated_at")
+
+    @remote_updated_at.setter
+    def remote_updated_at(self, value: Optional[pulumi.Input[_builtins.str]]):
+        pulumi.set(self, "remote_updated_at", value)
+
     @_builtins.property
     @pulumi.getter(name="secretName")
     def secret_name(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
-        Name of the secret
+        Name of the secret.
         """
         return pulumi.get(self, "secret_name")
 
@@ -190,9 +242,10 @@ class _DependabotOrganizationSecretState:
 
     @_builtins.property
     @pulumi.getter(name="selectedRepositoryIds")
+    @_utilities.deprecated("""This field is deprecated and will be removed in a future release. Please use the `DependabotOrganizationSecretRepositories` or `DependabotOrganizationSecretRepository` resources to manage repository access to organization secrets.""")
     def selected_repository_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.int]]]]:
         """
-        An array of repository ids that can access the organization secret.
+        An array of repository IDs that can access the organization variable; this requires `visibility` to be set to `selected`.
         """
         return pulumi.get(self, "selected_repository_ids")
 
@@ -204,7 +257,7 @@ class _DependabotOrganizationSecretState:
     @pulumi.getter(name="updatedAt")
     def updated_at(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
-        Date of dependabot_secret update.
+        Date the secret was last updated by the provider.
         """
         return pulumi.get(self, "updated_at")
 
@@ -216,8 +269,7 @@ class _DependabotOrganizationSecretState:
     @pulumi.getter
     def visibility(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
-        Configures the access that repositories have to the organization secret.
-        Must be one of `all`, `private`, `selected`. `selected_repository_ids` is required if set to `selected`.
+        Configures the access that repositories have to the organization secret; must be one of `all`, `private`, or `selected`.
         """
         return pulumi.get(self, "visibility")
 
@@ -233,34 +285,31 @@ class DependabotOrganizationSecret(pulumi.CustomResource):
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
                  encrypted_value: Optional[pulumi.Input[_builtins.str]] = None,
+                 key_id: Optional[pulumi.Input[_builtins.str]] = None,
                  plaintext_value: Optional[pulumi.Input[_builtins.str]] = None,
                  secret_name: Optional[pulumi.Input[_builtins.str]] = None,
                  selected_repository_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.int]]]] = None,
                  visibility: Optional[pulumi.Input[_builtins.str]] = None,
                  __props__=None):
         """
-        ## Example Usage
-
         ## Import
 
-        This resource can be imported using an ID made up of the secret name:
+        ### Import Command
+
+        The following command imports a GitHub Dependabot organization secret named `mysecret` to a `github_dependabot_organization_secret` resource named `example`.
 
         ```sh
-        $ pulumi import github:index/dependabotOrganizationSecret:DependabotOrganizationSecret test_secret test_secret_name
+        $ pulumi import github:index/dependabotOrganizationSecret:DependabotOrganizationSecret example mysecret
         ```
 
-        NOTE: the implementation is limited in that it won't fetch the value of the
-
-        `plaintext_value` or `encrypted_value` fields when importing. You may need to ignore changes for these as a workaround.
-
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[_builtins.str] encrypted_value: Encrypted value of the secret using the GitHub public key in Base64 format.
-        :param pulumi.Input[_builtins.str] plaintext_value: Plaintext value of the secret to be encrypted
-        :param pulumi.Input[_builtins.str] secret_name: Name of the secret
-        :param pulumi.Input[Sequence[pulumi.Input[_builtins.int]]] selected_repository_ids: An array of repository ids that can access the organization secret.
-        :param pulumi.Input[_builtins.str] visibility: Configures the access that repositories have to the organization secret.
-               Must be one of `all`, `private`, `selected`. `selected_repository_ids` is required if set to `selected`.
+        :param pulumi.Input[_builtins.str] key_id: ID of the public key used to encrypt the secret. This should be provided when setting `encrypted_value`; if it isn't then the current public key will be looked up, which could cause a missmatch. This conflicts with `plaintext_value`.
+        :param pulumi.Input[_builtins.str] plaintext_value: Plaintext value of the secret to be encrypted.
+        :param pulumi.Input[_builtins.str] secret_name: Name of the secret.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.int]]] selected_repository_ids: An array of repository IDs that can access the organization variable; this requires `visibility` to be set to `selected`.
+        :param pulumi.Input[_builtins.str] visibility: Configures the access that repositories have to the organization secret; must be one of `all`, `private`, or `selected`.
         """
         ...
     @overload
@@ -269,20 +318,16 @@ class DependabotOrganizationSecret(pulumi.CustomResource):
                  args: DependabotOrganizationSecretArgs,
                  opts: Optional[pulumi.ResourceOptions] = None):
         """
-        ## Example Usage
-
         ## Import
 
-        This resource can be imported using an ID made up of the secret name:
+        ### Import Command
+
+        The following command imports a GitHub Dependabot organization secret named `mysecret` to a `github_dependabot_organization_secret` resource named `example`.
 
         ```sh
-        $ pulumi import github:index/dependabotOrganizationSecret:DependabotOrganizationSecret test_secret test_secret_name
+        $ pulumi import github:index/dependabotOrganizationSecret:DependabotOrganizationSecret example mysecret
         ```
 
-        NOTE: the implementation is limited in that it won't fetch the value of the
-
-        `plaintext_value` or `encrypted_value` fields when importing. You may need to ignore changes for these as a workaround.
-
         :param str resource_name: The name of the resource.
         :param DependabotOrganizationSecretArgs args: The arguments to use to populate this resource's properties.
         :param pulumi.ResourceOptions opts: Options for the resource.
@@ -299,6 +344,7 @@ class DependabotOrganizationSecret(pulumi.CustomResource):
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
                  encrypted_value: Optional[pulumi.Input[_builtins.str]] = None,
+                 key_id: Optional[pulumi.Input[_builtins.str]] = None,
                  plaintext_value: Optional[pulumi.Input[_builtins.str]] = None,
                  secret_name: Optional[pulumi.Input[_builtins.str]] = None,
                  selected_repository_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.int]]]] = None,
@@ -313,6 +359,7 @@ class DependabotOrganizationSecret(pulumi.CustomResource):
             __props__ = DependabotOrganizationSecretArgs.__new__(DependabotOrganizationSecretArgs)
 
             __props__.__dict__["encrypted_value"] = None if encrypted_value is None else pulumi.Output.secret(encrypted_value)
+            __props__.__dict__["key_id"] = key_id
             __props__.__dict__["plaintext_value"] = None if plaintext_value is None else pulumi.Output.secret(plaintext_value)
             if secret_name is None and not opts.urn:
                 raise TypeError("Missing required property 'secret_name'")
@@ -322,6 +369,7 @@ class DependabotOrganizationSecret(pulumi.CustomResource):
                 raise TypeError("Missing required property 'visibility'")
             __props__.__dict__["visibility"] = visibility
             __props__.__dict__["created_at"] = None
+            __props__.__dict__["remote_updated_at"] = None
             __props__.__dict__["updated_at"] = None
         secret_opts = pulumi.ResourceOptions(additional_secret_outputs=["encryptedValue", "plaintextValue"])
         opts = pulumi.ResourceOptions.merge(opts, secret_opts)
@@ -337,7 +385,9 @@ class DependabotOrganizationSecret(pulumi.CustomResource):
             opts: Optional[pulumi.ResourceOptions] = None,
             created_at: Optional[pulumi.Input[_builtins.str]] = None,
             encrypted_value: Optional[pulumi.Input[_builtins.str]] = None,
+            key_id: Optional[pulumi.Input[_builtins.str]] = None,
             plaintext_value: Optional[pulumi.Input[_builtins.str]] = None,
+            remote_updated_at: Optional[pulumi.Input[_builtins.str]] = None,
             secret_name: Optional[pulumi.Input[_builtins.str]] = None,
             selected_repository_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.int]]]] = None,
             updated_at: Optional[pulumi.Input[_builtins.str]] = None,
@@ -349,14 +399,15 @@ class DependabotOrganizationSecret(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[_builtins.str] created_at: Date of dependabot_secret creation.
+        :param pulumi.Input[_builtins.str] created_at: Date the secret was created.
         :param pulumi.Input[_builtins.str] encrypted_value: Encrypted value of the secret using the GitHub public key in Base64 format.
-        :param pulumi.Input[_builtins.str] plaintext_value: Plaintext value of the secret to be encrypted
-        :param pulumi.Input[_builtins.str] secret_name: Name of the secret
-        :param pulumi.Input[Sequence[pulumi.Input[_builtins.int]]] selected_repository_ids: An array of repository ids that can access the organization secret.
-        :param pulumi.Input[_builtins.str] updated_at: Date of dependabot_secret update.
-        :param pulumi.Input[_builtins.str] visibility: Configures the access that repositories have to the organization secret.
-               Must be one of `all`, `private`, `selected`. `selected_repository_ids` is required if set to `selected`.
+        :param pulumi.Input[_builtins.str] key_id: ID of the public key used to encrypt the secret. This should be provided when setting `encrypted_value`; if it isn't then the current public key will be looked up, which could cause a missmatch. This conflicts with `plaintext_value`.
+        :param pulumi.Input[_builtins.str] plaintext_value: Plaintext value of the secret to be encrypted.
+        :param pulumi.Input[_builtins.str] remote_updated_at: Date the secret was last updated in GitHub.
+        :param pulumi.Input[_builtins.str] secret_name: Name of the secret.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.int]]] selected_repository_ids: An array of repository IDs that can access the organization variable; this requires `visibility` to be set to `selected`.
+        :param pulumi.Input[_builtins.str] updated_at: Date the secret was last updated by the provider.
+        :param pulumi.Input[_builtins.str] visibility: Configures the access that repositories have to the organization secret; must be one of `all`, `private`, or `selected`.
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
 
@@ -364,7 +415,9 @@ class DependabotOrganizationSecret(pulumi.CustomResource):
 
         __props__.__dict__["created_at"] = created_at
         __props__.__dict__["encrypted_value"] = encrypted_value
+        __props__.__dict__["key_id"] = key_id
         __props__.__dict__["plaintext_value"] = plaintext_value
+        __props__.__dict__["remote_updated_at"] = remote_updated_at
         __props__.__dict__["secret_name"] = secret_name
         __props__.__dict__["selected_repository_ids"] = selected_repository_ids
         __props__.__dict__["updated_at"] = updated_at
@@ -375,7 +428,7 @@ class DependabotOrganizationSecret(pulumi.CustomResource):
     @pulumi.getter(name="createdAt")
     def created_at(self) -> pulumi.Output[_builtins.str]:
         """
-        Date of dependabot_secret creation.
+        Date the secret was created.
         """
         return pulumi.get(self, "created_at")
 
@@ -387,27 +440,44 @@ class DependabotOrganizationSecret(pulumi.CustomResource):
         """
         return pulumi.get(self, "encrypted_value")
 
+    @_builtins.property
+    @pulumi.getter(name="keyId")
+    def key_id(self) -> pulumi.Output[_builtins.str]:
+        """
+        ID of the public key used to encrypt the secret. This should be provided when setting `encrypted_value`; if it isn't then the current public key will be looked up, which could cause a missmatch. This conflicts with `plaintext_value`.
+        """
+        return pulumi.get(self, "key_id")
+
     @_builtins.property
     @pulumi.getter(name="plaintextValue")
     def plaintext_value(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
-        Plaintext value of the secret to be encrypted
+        Plaintext value of the secret to be encrypted.
         """
         return pulumi.get(self, "plaintext_value")
 
+    @_builtins.property
+    @pulumi.getter(name="remoteUpdatedAt")
+    def remote_updated_at(self) -> pulumi.Output[_builtins.str]:
+        """
+        Date the secret was last updated in GitHub.
+        """
+        return pulumi.get(self, "remote_updated_at")
+
     @_builtins.property
     @pulumi.getter(name="secretName")
     def secret_name(self) -> pulumi.Output[_builtins.str]:
         """
-        Name of the secret
+        Name of the secret.
         """
         return pulumi.get(self, "secret_name")
 
     @_builtins.property
     @pulumi.getter(name="selectedRepositoryIds")
+    @_utilities.deprecated("""This field is deprecated and will be removed in a future release. Please use the `DependabotOrganizationSecretRepositories` or `DependabotOrganizationSecretRepository` resources to manage repository access to organization secrets.""")
     def selected_repository_ids(self) -> pulumi.Output[Optional[Sequence[_builtins.int]]]:
         """
-        An array of repository ids that can access the organization secret.
+        An array of repository IDs that can access the organization variable; this requires `visibility` to be set to `selected`.
         """
         return pulumi.get(self, "selected_repository_ids")
 
@@ -415,7 +485,7 @@ class DependabotOrganizationSecret(pulumi.CustomResource):
     @pulumi.getter(name="updatedAt")
     def updated_at(self) -> pulumi.Output[_builtins.str]:
         """
-        Date of dependabot_secret update.
+        Date the secret was last updated by the provider.
         """
         return pulumi.get(self, "updated_at")
 
@@ -423,8 +493,7 @@ class DependabotOrganizationSecret(pulumi.CustomResource):
     @pulumi.getter
     def visibility(self) -> pulumi.Output[_builtins.str]:
         """
-        Configures the access that repositories have to the organization secret.
-        Must be one of `all`, `private`, `selected`. `selected_repository_ids` is required if set to `selected`.
+        Configures the access that repositories have to the organization secret; must be one of `all`, `private`, or `selected`.
         """
         return pulumi.get(self, "visibility")
 

pulumi_github/dependabot_organization_secret_repositories.py

@@ -23,8 +23,8 @@ class DependabotOrganizationSecretRepositoriesArgs:
                  selected_repository_ids: pulumi.Input[Sequence[pulumi.Input[_builtins.int]]]):
         """
         The set of arguments for constructing a DependabotOrganizationSecretRepositories resource.
-        :param pulumi.Input[_builtins.str] secret_name: Name of the existing secret
-        :param pulumi.Input[Sequence[pulumi.Input[_builtins.int]]] selected_repository_ids: An array of repository ids that can access the organization secret.
+        :param pulumi.Input[_builtins.str] secret_name: Name of the Dependabot organization secret.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.int]]] selected_repository_ids: List of IDs for the repositories that should be able to access the secret.
         """
         pulumi.set(__self__, "secret_name", secret_name)
         pulumi.set(__self__, "selected_repository_ids", selected_repository_ids)
@@ -33,7 +33,7 @@ class DependabotOrganizationSecretRepositoriesArgs:
     @pulumi.getter(name="secretName")
     def secret_name(self) -> pulumi.Input[_builtins.str]:
         """
-        Name of the existing secret
+        Name of the Dependabot organization secret.
         """
         return pulumi.get(self, "secret_name")
 
@@ -45,7 +45,7 @@ class DependabotOrganizationSecretRepositoriesArgs:
     @pulumi.getter(name="selectedRepositoryIds")
     def selected_repository_ids(self) -> pulumi.Input[Sequence[pulumi.Input[_builtins.int]]]:
         """
-        An array of repository ids that can access the organization secret.
+        List of IDs for the repositories that should be able to access the secret.
         """
         return pulumi.get(self, "selected_repository_ids")
 
@@ -61,8 +61,8 @@ class _DependabotOrganizationSecretRepositoriesState:
                  selected_repository_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.int]]]] = None):
         """
         Input properties used for looking up and filtering DependabotOrganizationSecretRepositories resources.
-        :param pulumi.Input[_builtins.str] secret_name: Name of the existing secret
-        :param pulumi.Input[Sequence[pulumi.Input[_builtins.int]]] selected_repository_ids: An array of repository ids that can access the organization secret.
+        :param pulumi.Input[_builtins.str] secret_name: Name of the Dependabot organization secret.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.int]]] selected_repository_ids: List of IDs for the repositories that should be able to access the secret.
         """
         if secret_name is not None:
             pulumi.set(__self__, "secret_name", secret_name)
@@ -73,7 +73,7 @@ class _DependabotOrganizationSecretRepositoriesState:
     @pulumi.getter(name="secretName")
     def secret_name(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
-        Name of the existing secret
+        Name of the Dependabot organization secret.
         """
         return pulumi.get(self, "secret_name")
 
@@ -85,7 +85,7 @@ class _DependabotOrganizationSecretRepositoriesState:
     @pulumi.getter(name="selectedRepositoryIds")
     def selected_repository_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.int]]]]:
         """
-        An array of repository ids that can access the organization secret.
+        List of IDs for the repositories that should be able to access the secret.
         """
         return pulumi.get(self, "selected_repository_ids")
 
@@ -104,7 +104,7 @@ class DependabotOrganizationSecretRepositories(pulumi.CustomResource):
                  selected_repository_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.int]]]] = None,
                  __props__=None):
         """
-        This resource allows you to manage the repository allow list for existing GitHub Dependabot secrets within your GitHub organization.
+        This resource allows you to manage the repositories allowed to access a Dependabot secret within your GitHub organization.
         You must have write access to an organization secret to use this resource.
 
         This resource is only applicable when `visibility` of the existing organization secret has been set to `selected`.
@@ -115,28 +115,32 @@ class DependabotOrganizationSecretRepositories(pulumi.CustomResource):
         import pulumi
         import pulumi_github as github
 
-        repo = github.get_repository(full_name="my-org/repo")
-        example_secret = github.DependabotOrganizationSecret("example_secret",
-            secret_name="example_secret_name",
-            visibility="private",
-            plaintext_value=some_secret_string)
-        org_secret_repos = github.DependabotOrganizationSecretRepositories("org_secret_repos",
-            secret_name=example_secret.secret_name,
-            selected_repository_ids=[repo.repo_id])
+        example = github.DependabotOrganizationSecret("example",
+            secret_name="mysecret",
+            plaintext_value="foo",
+            visibility="selected")
+        example_repository = github.Repository("example",
+            name="myrepo",
+            visibility="public")
+        example_dependabot_organization_secret_repositories = github.DependabotOrganizationSecretRepositories("example",
+            secret_name=example.name,
+            selected_repository_ids=[example_repository.repo_id])
         ```
 
         ## Import
 
-        This resource can be imported using an ID made up of the secret name:
+        ### Import Command
+
+        The following command imports the repositories able to access the Dependabot organization secret named `mysecret` to a `github_dependabot_organization_secret_repositories` resource named `example`.
 
         ```sh
-        $ pulumi import github:index/dependabotOrganizationSecretRepositories:DependabotOrganizationSecretRepositories test_secret_repos test_secret_name
+        $ pulumi import github:index/dependabotOrganizationSecretRepositories:DependabotOrganizationSecretRepositories example mysecret
         ```
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[_builtins.str] secret_name: Name of the existing secret
-        :param pulumi.Input[Sequence[pulumi.Input[_builtins.int]]] selected_repository_ids: An array of repository ids that can access the organization secret.
+        :param pulumi.Input[_builtins.str] secret_name: Name of the Dependabot organization secret.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.int]]] selected_repository_ids: List of IDs for the repositories that should be able to access the secret.
         """
         ...
     @overload
@@ -145,7 +149,7 @@ class DependabotOrganizationSecretRepositories(pulumi.CustomResource):
                  args: DependabotOrganizationSecretRepositoriesArgs,
                  opts: Optional[pulumi.ResourceOptions] = None):
         """
-        This resource allows you to manage the repository allow list for existing GitHub Dependabot secrets within your GitHub organization.
+        This resource allows you to manage the repositories allowed to access a Dependabot secret within your GitHub organization.
         You must have write access to an organization secret to use this resource.
 
         This resource is only applicable when `visibility` of the existing organization secret has been set to `selected`.
@@ -156,22 +160,26 @@ class DependabotOrganizationSecretRepositories(pulumi.CustomResource):
         import pulumi
         import pulumi_github as github
 
-        repo = github.get_repository(full_name="my-org/repo")
-        example_secret = github.DependabotOrganizationSecret("example_secret",
-            secret_name="example_secret_name",
-            visibility="private",
-            plaintext_value=some_secret_string)
-        org_secret_repos = github.DependabotOrganizationSecretRepositories("org_secret_repos",
-            secret_name=example_secret.secret_name,
-            selected_repository_ids=[repo.repo_id])
+        example = github.DependabotOrganizationSecret("example",
+            secret_name="mysecret",
+            plaintext_value="foo",
+            visibility="selected")
+        example_repository = github.Repository("example",
+            name="myrepo",
+            visibility="public")
+        example_dependabot_organization_secret_repositories = github.DependabotOrganizationSecretRepositories("example",
+            secret_name=example.name,
+            selected_repository_ids=[example_repository.repo_id])
         ```
 
         ## Import
 
-        This resource can be imported using an ID made up of the secret name:
+        ### Import Command
+
+        The following command imports the repositories able to access the Dependabot organization secret named `mysecret` to a `github_dependabot_organization_secret_repositories` resource named `example`.
 
         ```sh
-        $ pulumi import github:index/dependabotOrganizationSecretRepositories:DependabotOrganizationSecretRepositories test_secret_repos test_secret_name
+        $ pulumi import github:index/dependabotOrganizationSecretRepositories:DependabotOrganizationSecretRepositories example mysecret
         ```
 
         :param str resource_name: The name of the resource.
@@ -225,8 +233,8 @@ class DependabotOrganizationSecretRepositories(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[_builtins.str] secret_name: Name of the existing secret
-        :param pulumi.Input[Sequence[pulumi.Input[_builtins.int]]] selected_repository_ids: An array of repository ids that can access the organization secret.
+        :param pulumi.Input[_builtins.str] secret_name: Name of the Dependabot organization secret.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.int]]] selected_repository_ids: List of IDs for the repositories that should be able to access the secret.
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
 
@@ -240,7 +248,7 @@ class DependabotOrganizationSecretRepositories(pulumi.CustomResource):
     @pulumi.getter(name="secretName")
     def secret_name(self) -> pulumi.Output[_builtins.str]:
         """
-        Name of the existing secret
+        Name of the Dependabot organization secret.
         """
         return pulumi.get(self, "secret_name")
 
@@ -248,7 +256,7 @@ class DependabotOrganizationSecretRepositories(pulumi.CustomResource):
     @pulumi.getter(name="selectedRepositoryIds")
     def selected_repository_ids(self) -> pulumi.Output[Sequence[_builtins.int]]:
         """
-        An array of repository ids that can access the organization secret.
+        List of IDs for the repositories that should be able to access the secret.
         """
         return pulumi.get(self, "selected_repository_ids")