Note
Este artículo enumera los eventos que pueden aparecer en el registro de auditoría de una empresa. Para los eventos que pueden aparecer en el registro de seguridad de una cuenta de usuario o en el registro de auditoría de una organización, consulta "Eventos de registro de seguridad" y "Eventos de registro de auditoría de la organización".
En este artículo se enumeran los eventos que aparecen en la configuración de empresa. El panel de administración del sitio puede contener otros eventos que no aparecen aquí.
account
Acción | Descripción |
---|---|
account.plan_change | The account's plan changed. |
actions_cache
Acción | Descripción |
---|---|
actions_cache.delete | A GitHub Actions cache was deleted using the REST API. |
api
Acción | Descripción |
---|---|
api.request | An API request was made to an endpoint for the enterprise, or an enterprise owned resource. This event is only included if API Request Events is enabled in the enterprise's audit log settings. This event is only available via audit log streaming. |
artifact
Acción | Descripción |
---|---|
artifact.destroy | A workflow run artifact was manually deleted. |
audit_log_streaming
Acción | Descripción |
---|---|
audit_log_streaming.check | A manual check of the endpoint configured for audit log streaming was performed. |
audit_log_streaming.create | An endpoint was added for audit log streaming. |
audit_log_streaming.destroy | An audit log streaming endpoint was deleted. |
audit_log_streaming.update | An endpoint configuration was updated for audit log streaming, such as the stream was paused, enabled, or disabled. |
billing
Acción | Descripción |
---|---|
billing.change_billing_type | The way the account pays for GitHub was changed. |
billing.change_email | The billing email address changed. |
business
Acción | Descripción |
---|---|
business.add_admin | An enterprise owner was added to an enterprise. |
business.add_organization | An organization was added to an enterprise. |
business.advanced_security_policy_update | An enterprise owner created, updated, or removed a policy for GitHub Advanced Security. |
business.clear_actions_settings | An enterprise owner or site administrator cleared GitHub Actions policy settings for an enterprise. |
business.clear_default_repository_permission | An enterprise owner cleared the base repository permission policy setting for an enterprise. |
business.clear_members_can_create_repos | An enterprise owner cleared a restriction on repository creation in organizations in the enterprise. |
business.code_scanning_autofix_policy_update | The policy for Code scanning autofix was updated for an enterprise. |
business.create | An enterprise was created. |
business.disable_open_scim | SCIM provisioning for custom integrations that use the REST API was disabled for the enterprise. |
business.disable_source_ip_disclosure | Display of IP addresses within audit log events for the enterprise was disabled. |
business.disable_two_factor_requirement | The requirement for members to have two-factor authentication enabled to access an enterprise was disabled. |
business.enable_open_scim | SCIM provisioning for custom integrations that use the REST API was enabled for the enterprise. |
business.enable_source_ip_disclosure | Display of IP addresses within audit log events for the enterprise was enabled. |
business.enable_two_factor_requirement | The requirement for members to have two-factor authentication enabled to access an enterprise was enabled. |
business.members_can_update_protected_branches.clear | An enterprise owner unset a policy for whether members of an enterprise can update protected branches on repositories for individual organizations. Organization owners can choose whether to allow updating protected branches settings. |
business.members_can_update_protected_branches.disable | The ability for enterprise members to update branch protection rules was disabled. Only enterprise owners can update protected branches. |
business.members_can_update_protected_branches.enable | The ability for enterprise members to update branch protection rules was enabled. Enterprise owners and members can update protected branches. |
business.remove_admin | An enterprise owner was removed from an enterprise. |
business.remove_organization | An organization was removed from an enterprise. |
business.rename_slug | The slug for the enterprise URL was renamed. |
business.revoke_sso_session | The SAML single sign-on session for a member in an enterprise was revoked. |
business.set_actions_fork_pr_approvals_policy | The policy for requiring approvals for workflows from public forks was changed for an enterprise. |
business.set_actions_private_fork_pr_approvals_policy | The policy for requiring approval for fork pull request workflows from collaborators without write access to private repos was changed for an enterprise. |
business.set_actions_retention_limit | The retention period for GitHub Actions artifacts and logs was changed for an enterprise. |
business.set_default_workflow_permissions | The default permissions granted to the GITHUB_TOKEN when running workflows were changed for an enterprise. |
business.set_fork_pr_workflows_policy | The policy for fork pull request workflows was changed for an enterprise. |
business.set_workflow_permission_can_approve_pr | The policy for allowing GitHub Actions to create and approve pull requests was changed for an enterprise. |
business.sso_response | A SAML single sign-on (SSO) response was generated when a member attempted to authenticate with your enterprise. This event is not available in the web interface, only via the REST API, audit log streaming, or JSON/CSV exports. |
business.update_actions_settings | An enterprise owner or site administrator updated GitHub Actions policy settings for an enterprise. |
business.update_default_repository_permission | The base repository permission setting was updated for all organizations in an enterprise. |
business.update_member_repository_creation_permission | The repository creation setting was updated for an enterprise. |
business.update_member_repository_invitation_permission | The policy setting for enterprise members inviting outside collaborators to repositories was updated. |
business_advanced_security
Acción | Descripción |
---|---|
business_advanced_security.disabled | GitHub Advanced Security was disabled for your enterprise. |
business_advanced_security.disabled_for_new_repos | GitHub Advanced Security was disabled for new repositories in your enterprise. |
business_advanced_security.disabled_for_new_user_namespace_repos | GitHub Advanced Security was disabled for new user namespace repositories in your enterprise. |
business_advanced_security.enabled | GitHub Advanced Security was enabled for your enterprise. |
business_advanced_security.enabled_for_new_repos | GitHub Advanced Security was enabled for new repositories in your enterprise. |
business_advanced_security.enabled_for_new_user_namespace_repos | GitHub Advanced Security was enabled for new user namespace repositories in your enterprise. |
business_advanced_security.user_namespace_repos_disabled | GitHub Advanced Security was disabled for user namespace repositories in your enterprise. |
business_advanced_security.user_namespace_repos_enabled | GitHub Advanced Security was enabled for user namespace repositories in your enterprise. |
business_dependabot_alerts_new_repos
Acción | Descripción |
---|---|
business_dependabot_alerts_new_repos.disable | Dependabot alerts were disabled for new repositories in your enterprise. |
business_dependabot_alerts_new_repos.enable | Dependabot alerts were enabled for new repositories in your enterprise. |
business_secret_scanning_automatic_validity_checks
Acción | Descripción |
---|---|
business_secret_scanning_automatic_validity_checks.disabled | Automatic partner validation checks have been disabled at the business level |
business_secret_scanning_automatic_validity_checks.enabled | Automatic partner validation checks have been enabled at the business level |
business_secret_scanning_custom_pattern
Acción | Descripción |
---|---|
business_secret_scanning_custom_pattern.create | An enterprise-level custom pattern was created for secret scanning. |
business_secret_scanning_custom_pattern.delete | An enterprise-level custom pattern was removed from secret scanning. |
business_secret_scanning_custom_pattern.publish | An enterprise-level custom pattern was published for secret scanning. |
business_secret_scanning_custom_pattern.update | Changes to an enterprise-level custom pattern were saved and a dry run was executed for secret scanning. |
business_secret_scanning_custom_pattern_push_protection
Acción | Descripción |
---|---|
business_secret_scanning_custom_pattern_push_protection.disabled | Push protection for a custom pattern for secret scanning was disabled for your enterprise. |
business_secret_scanning_custom_pattern_push_protection.enabled | Push protection for a custom pattern for secret scanning was enabled for your enterprise. |
business_secret_scanning
Acción | Descripción |
---|---|
business_secret_scanning.disable | Secret scanning was disabled for your enterprise. |
business_secret_scanning.disabled_for_new_repos | Secret scanning was disabled for new repositories in your enterprise. |
business_secret_scanning.enable | Secret scanning was enabled for your enterprise. |
business_secret_scanning.enabled_for_new_repos | Secret scanning was enabled for new repositories in your enterprise. |
business_secret_scanning_non_provider_patterns
Acción | Descripción |
---|---|
business_secret_scanning_non_provider_patterns.disabled | Secret scanning for non-provider patterns was disabled at the enterprise level. |
business_secret_scanning_non_provider_patterns.enabled | Secret scanning for non-provider patterns was enabled at the enterprise level. |
business_secret_scanning_push_protection_custom_message
Acción | Descripción |
---|---|
business_secret_scanning_push_protection_custom_message.disable | The custom message triggered by an attempted push to a push-protected repository was disabled for your enterprise. |
business_secret_scanning_push_protection_custom_message.enable | The custom message triggered by an attempted push to a push-protected repository was enabled for your enterprise. |
business_secret_scanning_push_protection_custom_message.update | The custom message triggered by an attempted push to a push-protected repository was updated for your enterprise. |
business_secret_scanning_push_protection
Acción | Descripción |
---|---|
business_secret_scanning_push_protection.disable | Push protection for secret scanning was disabled for your enterprise. |
business_secret_scanning_push_protection.disabled_for_new_repos | Push protection for secret scanning was disabled for new repositories in your enterprise. |
business_secret_scanning_push_protection.enable | Push protection for secret scanning was enabled for your enterprise. |
business_secret_scanning_push_protection.enabled_for_new_repos | Push protection for secret scanning was enabled for new repositories in your enterprise. |
checks
Acción | Descripción |
---|---|
checks.auto_trigger_disabled | Automatic creation of check suites was disabled on a repository in the organization or enterprise. |
checks.auto_trigger_enabled | Automatic creation of check suites was enabled on a repository in the organization or enterprise. |
checks.delete_logs | Logs in a check suite were deleted. |
code
Acción | Descripción |
---|---|
code.search | A code search was run targeting an organization. This event is not available in the web interface, only via the REST API, audit log streaming, or JSON/CSV exports. |
codespaces
Acción | Descripción |
---|---|
codespaces.allow_permissions | A codespace using custom permissions from its devcontainer.json file was launched. |
codespaces.connect | Credentials for a codespace were refreshed. |
codespaces.create | A codespace was created |
codespaces.destroy | A user deleted a codespace. |
codespaces.export_environment | A codespace was exported to a branch on GitHub. |
codespaces.restore | A codespace was restored. |
codespaces.start_environment | A codespace was started. |
codespaces.suspend_environment | A codespace was stopped. |
codespaces.trusted_repositories_access_update | A personal account's access and security setting for Codespaces were updated. |
copilot
Acción | Descripción |
---|---|
copilot.cfb_seat_added | A Copilot Business or Copilot Enterprise seat was added for a user and they have received access to GitHub Copilot. This can occur as the result of directly assigning a seat for a user, assigning a seat for a team, or setting the organization to allow access for all members. |
copilot.cfb_seat_assignment_created | A Copilot Business or Copilot Enterprise seat assignment was newly created for a user or a team, and seats are being created. |
copilot.cfb_seat_assignment_refreshed | A seat assignment that was previously pending cancellation was re-assigned and the user will retain access to Copilot. |
copilot.cfb_seat_assignment_reused | A Copilot Business or Copilot Enterprise seat assignment was re-created for a user who already had a seat with no pending cancellation date, and the user will retain access to Copilot. |
copilot.cfb_seat_assignment_unassigned | A user or team's Copilot Business or Copilot Enterprise seat assignment was unassigned, and the user(s) will lose access to Copilot at the end of the current billing cycle. |
copilot.cfb_seat_cancelled | A user's Copilot Business or Copilot Enterprise seat was canceled, and the user no longer has access to Copilot. |
copilot.cfb_seat_cancelled_by_staff | A user's Copilot Business or Copilot Enterprise seat was canceled manually by GitHub staff, and the user no longer has access to Copilot. |
custom_property_definition
Acción | Descripción |
---|---|
custom_property_definition.create | A new custom property definition was created. |
custom_property_definition.destroy | A custom property definition was deleted. |
custom_property_definition.update | A custom property definition was updated. |
custom_property_value
Acción | Descripción |
---|---|
custom_property_value.create | A repository's custom property value was manually set for the first time. |
custom_property_value.destroy | A repository's custom property value was deleted. |
custom_property_value.update | A repository's custom property value was updated. |
dependabot_alerts
Acción | Descripción |
---|---|
dependabot_alerts.disable | Dependabot alerts were disabled for all existing repositories. |
dependabot_alerts.enable | Dependabot alerts were enabled for all existing repositories. |
dependabot_alerts_new_repos
Acción | Descripción |
---|---|
dependabot_alerts_new_repos.disable | Dependabot alerts were disabled for all new repositories. |
dependabot_alerts_new_repos.enable | Dependabot alerts were enabled for all new repositories. |
dependabot_repository_access
Acción | Descripción |
---|---|
dependabot_repository_access.repositories_updated | The repositories that Dependabot can access were updated. |
dependabot_security_updates
Acción | Descripción |
---|---|
dependabot_security_updates.disable | Dependabot security updates were disabled for all existing repositories. |
dependabot_security_updates.enable | Dependabot security updates were enabled for all existing repositories. |
dependabot_security_updates_new_repos
Acción | Descripción |
---|---|
dependabot_security_updates_new_repos.disable | Dependabot security updates were disabled for all new repositories. |
dependabot_security_updates_new_repos.enable | Dependabot security updates were enabled for all new repositories. |
dependency_graph
Acción | Descripción |
---|---|
dependency_graph.disable | The dependency graph was disabled for all existing repositories. |
dependency_graph.enable | The dependency graph was enabled for all existing repositories. |
dependency_graph_new_repos
Acción | Descripción |
---|---|
dependency_graph_new_repos.disable | The dependency graph was disabled for all new repositories. |
dependency_graph_new_repos.enable | The dependency graph was enabled for all new repositories. |
discussion_post
Acción | Descripción |
---|---|
discussion_post.destroy | Triggered when a team discussion post is deleted. |
discussion_post.update | Triggered when a team discussion post is edited. |
discussion_post_reply
Acción | Descripción |
---|---|
discussion_post_reply.destroy | Triggered when a reply to a team discussion post is deleted. |
discussion_post_reply.update | Triggered when a reply to a team discussion post is edited. |
enterprise_announcement
Acción | Descripción |
---|---|
enterprise_announcement.create | A global announcement banner was created for the enterprise. |
enterprise_announcement.destroy | A global announcement banner was removed from the enterprise. |
enterprise_announcement.update | A global announcement banner was updated for the enterprise. |
enterprise_domain
Acción | Descripción |
---|---|
enterprise_domain.approve | A domain was approved for an enterprise. |
enterprise_domain.create | A domain was added to an enterprise. |
enterprise_domain.destroy | A domain was removed from an enterprise. |
enterprise_domain.verify | A domain was verified for an enterprise. |
enterprise
Acción | Descripción |
---|---|
enterprise.register_self_hosted_runner | A new GitHub Actions self-hosted runner was registered. |
enterprise.remove_self_hosted_runner | A GitHub Actions self-hosted runner was removed. |
enterprise.runner_group_created | A GitHub Actions self-hosted runner group was created. |
enterprise.runner_group_removed | A GitHub Actions self-hosted runner group was removed. |
enterprise.runner_group_runner_removed | The REST API was used to remove a GitHub Actions self-hosted runner from a group. |
enterprise.runner_group_runners_added | A GitHub Actions self-hosted runner was added to a group. |
enterprise.runner_group_runners_updated | A GitHub Actions runner group's list of members was updated. |
enterprise.runner_group_updated | The configuration of a GitHub Actions self-hosted runner group was changed. |
enterprise.self_hosted_runner_offline | The GitHub Actions runner application was stopped. This event is not available in the web interface, only via the REST API, audit log streaming, or JSON/CSV exports. |
enterprise.self_hosted_runner_online | The GitHub Actions runner application was started. This event is not available in the web interface, only via the REST API, audit log streaming, or JSON/CSV exports. |
enterprise.self_hosted_runner_updated | The GitHub Actions runner application was updated. This event is not included in the JSON/CSV export. |
enterprise_team
Acción | Descripción |
---|---|
enterprise_team.add_member | A new member was added to the enterprise team or an IdP group linked to an enterprise team, or an IdP group was linked to an enterprise team. |
enterprise_team.copilot_assignment | A license for GitHub Copilot was assigned to an enterprise team. |
enterprise_team.copilot_unassignment | A license for GitHub Copilot was unassigned from an enterprise team. |
enterprise_team.create | A new enterprise team was created. |
enterprise_team.destroy | An enterprise team was deleted. |
enterprise_team.remove_member | A member was removed from the enterprise team or an IdP group linked to an enterprise team, or an IdP group was unlinked from an enterprise team. |
enterprise_team.rename | The name of an enterprise team was changed. |
environment
Acción | Descripción |
---|---|
environment.add_protection_rule | A GitHub Actions deployment protection rule was created via the API. |
environment.create_actions_secret | A secret was created for a GitHub Actions environment. |
environment.create_actions_variable | A variable was created for a GitHub Actions environment. |
environment.delete | An environment was deleted. |
environment.remove_actions_secret | A secret was deleted for a GitHub Actions environment. |
environment.remove_actions_variable | A variable was deleted for a GitHub Actions environment. |
environment.remove_protection_rule | A GitHub Actions deployment protection rule was deleted via the API. |
environment.update_actions_secret | A secret was updated for a GitHub Actions environment. |
environment.update_actions_variable | A variable was updated for a GitHub Actions environment. |
environment.update_protection_rule | A GitHub Actions deployment protection rule was updated via the API. |
external_group
Acción | Descripción |
---|---|
external_group.add_member | A user was added to an external group. |
external_group.delete | An external group was deleted. |
external_group.link | An external group was linked to a GitHub team. |
external_group.provision | An external group was created. |
external_group.remove_member | A user was removed from an external group. |
external_group.scim_api_failure | Failed external group SCIM API request. |
external_group.scim_api_success | Successful external group SCIM API request. Excludes GET API requests. |
external_group.unlink | An external group was unlinked to a GitHub team. |
external_group.update | An external group was updated. |
external_group.update_display_name | An external group's display name was updated. |
external_identity
Acción | Descripción |
---|---|
external_identity.deprovision | An external identity was deprovisioned, suspending the linked GitHub user. |
external_identity.provision | An external identity was created and linked to a GitHub user. |
external_identity.scim_api_failure | Failed external identity SCIM API request. |
external_identity.scim_api_success | Successful external identity SCIM API request. Excludes GET API requests. |
external_identity.update | An external identity was updated. |
gist
Acción | Descripción |
---|---|
gist.create | A gist was created. |
gist.destroy | A gist was deleted. |
gist.visibility_change | The visibility of a gist was updated. |
git
Acción | Descripción |
---|---|
git.clone | A repository was cloned. |
git.fetch | Changes were fetched from a repository. |
git.push | Changes were pushed to a repository. |
git_signing_ssh_public_key
Acción | Descripción |
---|---|
git_signing_ssh_public_key.create | An SSH key was added to a user account as a Git commit signing key. |
git_signing_ssh_public_key.delete | An SSH key was removed from a user account as a Git commit signing key. |
hook
Acción | Descripción |
---|---|
hook.active_changed | A hook's active status was updated. |
hook.config_changed | A hook's configuration was changed. |
hook.create | A new hook was added. |
hook.destroy | A hook was deleted. |
hook.events_changed | A hook's configured events were changed. |
integration
Acción | Descripción |
---|---|
integration.create | A GitHub App was created. |
integration.destroy | A GitHub App was deleted. |
integration.manager_added | A member of an enterprise or organization was added as a GitHub App manager. |
integration.manager_removed | A member of an enterprise or organization was removed from being a GitHub App manager. |
integration.remove_client_secret | A client secret for a GitHub App was removed. |
integration.revoke_all_tokens | All user tokens for a GitHub App were requested to be revoked. |
integration.revoke_tokens | Token(s) for a GitHub App were revoked. |
integration.suspend | A GitHub App was suspended. |
integration.transfer | Ownership of a GitHub App was transferred to another user or organization. |
integration.unsuspend | A GitHub App was unsuspended. |
integration_installation
Acción | Descripción |
---|---|
integration_installation.create | A GitHub App was installed. |
integration_installation.destroy | A GitHub App was uninstalled. |
integration_installation.repositories_added | Repositories were added to a GitHub App. |
integration_installation.repositories_removed | Repositories were removed from a GitHub App. |
integration_installation.suspend | A GitHub App was suspended. |
integration_installation.unsuspend | A GitHub App was unsuspended. |
integration_installation.version_updated | Permissions for a GitHub App were updated. |
ip_allow_list
Acción | Descripción |
---|---|
ip_allow_list.disable | An IP allow list was disabled. |
ip_allow_list.disable_for_installed_apps | An IP allow list was disabled for installed GitHub Apps. |
ip_allow_list.disable_user_level_enforcement | IP allow list user level enforcement was disabled. |
ip_allow_list.enable | An IP allow list was enabled. |
ip_allow_list.enable_for_installed_apps | An IP allow list was enabled for installed GitHub Apps. |
ip_allow_list.enable_user_level_enforcement | IP allow list user level enforcement was enabled. |
ip_allow_list_entry
Acción | Descripción |
---|---|
ip_allow_list_entry.create | An IP address was added to an IP allow list. |
ip_allow_list_entry.destroy | An IP address was deleted from an IP allow list. |
ip_allow_list_entry.update | An IP address or its description was changed. |
marketplace_agreement_signature
Acción | Descripción |
---|---|
marketplace_agreement_signature.create | The GitHub Marketplace Developer Agreement was signed. |
marketplace_listing
Acción | Descripción |
---|---|
marketplace_listing.approve | A listing was approved for inclusion in GitHub Marketplace. |
marketplace_listing.change_category | A category for a listing for an app in GitHub Marketplace was changed. |
marketplace_listing.create | A listing for an app in GitHub Marketplace was created. |
marketplace_listing.delist | A listing was removed from GitHub Marketplace. |
marketplace_listing.redraft | A listing was sent back to draft state. |
marketplace_listing.reject | A listing was not accepted for inclusion in GitHub Marketplace. |
migration
Acción | Descripción |
---|---|
migration.create | A migration file was created for transferring data from a source location (such as a GitHub.com organization or a GitHub Enterprise Server instance) to a target GitHub Enterprise Server instance. |
oauth_access
Acción | Descripción |
---|---|
oauth_access.create | An OAuth access token was generated. |
oauth_access.destroy | An OAuth access token was deleted. |
oauth_access.regenerate | An OAuth access token was regenerated. |
oauth_access.update | An OAuth access token was updated. |
oauth_application
Acción | Descripción |
---|---|
oauth_application.create | An OAuth application was created. |
oauth_application.destroy | An OAuth application was deleted. |
oauth_application.generate_client_secret | An OAuth application's secret key was generated. |
oauth_application.remove_client_secret | An OAuth application's secret key was deleted. |
oauth_application.reset_secret | The secret key for an OAuth application was reset. |
oauth_application.revoke_all_tokens | All user tokens for an OAuth application were requested to be revoked. |
oauth_application.revoke_tokens | Token(s) for an OAuth application were revoked. |
oauth_application.transfer | An OAuth application was transferred from one account to another. |
oauth_application.unsuspend | An OAuth application was unsuspended for a user or organization account. |
oauth_authorization
Acción | Descripción |
---|---|
oauth_authorization.create | An authorization for an OAuth application was created. |
oauth_authorization.destroy | An authorization for an OAuth application was deleted. |
oauth_authorization.update | An authorization for an OAuth application was updated. |
org
Acción | Descripción |
---|---|
org.accept_business_invitation | An invitation sent to an organization to join an enterprise was accepted. |
org.add_billing_manager | A billing manager was added to an organization. |
org.add_member | A user joined an organization. |
org.add_outside_collaborator | An outside collaborator was added to a repository. |
org.advanced_security_disabled_for_new_repos | GitHub Advanced Security was disabled for new repositories in an organization. |
org.advanced_security_disabled_on_all_repos | GitHub Advanced Security was disabled for all repositories in an organization. |
org.advanced_security_enabled_for_new_repos | GitHub Advanced Security was enabled for new repositories in an organization. |
org.advanced_security_enabled_on_all_repos | GitHub Advanced Security was enabled for all repositories in an organization. |
org.advanced_security_policy_selected_member_disabled | An enterprise owner prevented GitHub Advanced Security features from being enabled for repositories owned by the organization. |
org.advanced_security_policy_selected_member_enabled | An enterprise owner allowed GitHub Advanced Security features to be enabled for repositories owned by the organization. |
org.async_delete | A user initiated a background job to delete an organization. |
org.block_user | An organization owner blocked a user from accessing the organization's repositories. |
org.cancel_business_invitation | An invitation for an organization to join an enterprise was revoked |
org.cancel_invitation | An invitation sent to a user to join an organization was revoked. |
org.code_scanning_autofix_disabled | Autofix for code scanning alerts was disabled for an organization. |
org.code_scanning_autofix_enabled | Autofix for code scanning alerts was enabled for an organization. |
org.codeql_disabled | Code scanning using the default setup was disabled for an organization. |
org.codeql_enabled | Code scanning using the default setup was enabled for an organization. |
org.config.disable_collaborators_only | The interaction limit for collaborators only for an organization was disabled. |
org.config.disable_contributors_only | The interaction limit for prior contributors only for an organization was disabled. |
org.config.disable_sockpuppet_disallowed | The interaction limit for existing users only for an organization was disabled. |
org.config.enable_collaborators_only | The interaction limit for collaborators only for an organization was enabled. |
org.config.enable_contributors_only | The interaction limit for prior contributors only for an organization was enabled. |
org.config.enable_sockpuppet_disallowed | The interaction limit for existing users only for an organization was enabled. |
org.confirm_business_invitation | An invitation for an organization to join an enterprise was confirmed. |
org.create | An organization was created. |
org.delete | An organization was deleted by a user or staff. |
org.disable_member_team_creation_permission | Team creation was limited to owners. |
org.disable_reader_discussion_creation_permission | An organization owner limited discussion creation to users with at least triage permission in an organization. |
org.disable_saml | SAML single sign-on was disabled for an organization. |
org.disable_two_factor_requirement | A two-factor authentication requirement was disabled for the organization. |
org.display_commenter_full_name_disabled | An organization owner disabled the display of a commenter's full name in an organization. Members cannot see a comment author's full name. |
org.display_commenter_full_name_enabled | An organization owner enabled the display of a commenter's full name in an organization. Members can see a comment author's full name. |
org.enable_member_team_creation_permission | Team creation by members was allowed. |
org.enable_reader_discussion_creation_permission | An organization owner allowed users with read access to create discussions in an organization |
org.enable_saml | SAML single sign-on was enabled for the organization. |
org.enable_two_factor_requirement | Two-factor authentication is now required for the organization. |
org.integration_manager_added | An organization owner granted a member access to manage all GitHub Apps owned by an organization. |
org.integration_manager_removed | An organization owner removed access to manage all GitHub Apps owned by an organization from an organization member. |
org.invite_member | A new user was invited to join an organization. |
org.invite_to_business | An organization was invited to join an enterprise. |
org.members_can_update_protected_branches.disable | The ability for enterprise members to update protected branches was disabled. Only enterprise owners can update protected branches. |
org.members_can_update_protected_branches.enable | The ability for enterprise members to update protected branches was enabled. Members of an organization can update protected branches. |
org.recreate | An organization was restored. |
org.register_self_hosted_runner | A new self-hosted runner was registered. |
org.remove_billing_manager | A billing manager was removed from an organization, either manually or due to a two-factor authentication requirement. |
org.remove_member | A member was removed from an organization, either manually or due to a two-factor authentication requirement. |
org.remove_outside_collaborator | An outside collaborator was removed from an organization, either manually or due to a two-factor authentication requirement. |
org.remove_self_hosted_runner | A self-hosted runner was removed. |
org.rename | An organization was renamed. |
org.restore_member | An organization member was restored. |
org.runner_group_created | A self-hosted runner group was created. |
org.runner_group_removed | A self-hosted runner group was removed. |
org.runner_group_runner_removed | The REST API was used to remove a self-hosted runner from a group. |
org.runner_group_runners_added | A self-hosted runner was added to a group. |
org.runner_group_runners_updated | A runner group's list of members was updated. |
org.runner_group_updated | The configuration of a self-hosted runner group was changed. |
org.secret_scanning_custom_pattern_push_protection_disabled | Push protection for a custom pattern for secret scanning was disabled for an organization. |
org.secret_scanning_custom_pattern_push_protection_enabled | Push protection for a custom pattern for secret scanning was enabled for an organization. |
org.secret_scanning_push_protection_custom_message_disabled | The custom message triggered by an attempted push to a push-protected repository was disabled for an organization. |
org.secret_scanning_push_protection_custom_message_enabled | The custom message triggered by an attempted push to a push-protected repository was enabled for an organization. |
org.secret_scanning_push_protection_custom_message_updated | The custom message triggered by an attempted push to a push-protected repository was updated for an organization. |
org.secret_scanning_push_protection_disable | Push protection for secret scanning was disabled. |
org.secret_scanning_push_protection_enable | Push protection for secret scanning was enabled. |
org.secret_scanning_push_protection_new_repos_disable | Push protection for secret scanning was disabled for all new repositories in the organization. |
org.secret_scanning_push_protection_new_repos_enable | Push protection for secret scanning was enabled for all new repositories in the organization. |
org.security_center_export_coverage | A CSV export was requested on the Coverage page. |
org.security_center_export_overview_dashboard | A CSV export was requested on the Overview Dashboard page. |
org.security_center_export_risk | A CSV export was requested on the Risk page. |
org.self_hosted_runner_offline | The runner application was stopped. This event is not available in the web interface, only via the REST API, audit log streaming, or JSON/CSV exports. |
org.self_hosted_runner_online | The runner application was started. This event is not available in the web interface, only via the REST API, audit log streaming, or JSON/CSV exports. |
org.self_hosted_runner_updated | The runner application was updated. This event is not included in the JSON/CSV export. |
org.set_actions_fork_pr_approvals_policy | The setting for requiring approvals for workflows from public forks was changed for an organization. |
org.set_actions_private_fork_pr_approvals_policy | The policy for requiring approval for fork pull request workflows from collaborators without write access to private repos was changed for an organization. |
org.set_actions_retention_limit | The retention period for GitHub Actions artifacts and logs in an organization was changed. |
org.set_default_workflow_permissions | The default permissions granted to the GITHUB_TOKEN when running workflows were changed for an organization. |
org.set_fork_pr_workflows_policy | The policy for workflows on private repository forks was changed. |
org.set_workflow_permission_can_approve_pr | The policy for allowing GitHub Actions to create and approve pull requests was changed for an organization. |
org.sso_response | A SAML single sign-on (SSO) response was generated when a member attempted to authenticate with your organization. This event is not available in the web interface, only via the REST API, audit log streaming, or JSON/CSV exports. |
org.transform | A user account was converted into an organization. |
org.unblock_user | A user was unblocked from an organization. |
org.update_actions_settings | An organization owner or site administrator updated GitHub Actions policy settings for an organization. |
org.update_default_repository_permission | The default repository permission level for organization members was changed. |
org.update_member | A person's role was changed from owner to member or member to owner. |
org.update_member_repository_creation_permission | The create repository permission for organization members was changed. |
org.update_member_repository_invitation_permission | An organization owner changed the policy setting for organization members inviting outside collaborators to repositories. |
org.update_saml_provider_settings | An organization's SAML provider settings were updated. |
org.update_terms_of_service | An organization changed between the Standard Terms of Service and the GitHub Customer Agreement. |
org_secret_scanning_automatic_validity_checks
Acción | Descripción |
---|---|
org_secret_scanning_automatic_validity_checks.disabled | Automatic partner validation checks have been disabled at the organization level |
org_secret_scanning_automatic_validity_checks.enabled | Automatic partner validation checks have been enabled at the organization level |
org_secret_scanning_custom_pattern
Acción | Descripción |
---|---|
org_secret_scanning_custom_pattern.create | A custom pattern was created for secret scanning in an organization. |
org_secret_scanning_custom_pattern.delete | A custom pattern was removed from secret scanning in an organization. |
org_secret_scanning_custom_pattern.publish | A custom pattern was published for secret scanning in an organization. |
org_secret_scanning_custom_pattern.update | Changes to a custom pattern were saved and a dry run was executed for secret scanning in an organization. |
org_secret_scanning_non_provider_patterns
Acción | Descripción |
---|---|
org_secret_scanning_non_provider_patterns.disabled | Secret scanning for non-provider patterns was disabled at the organization level. |
org_secret_scanning_non_provider_patterns.enabled | Secret scanning for non-provider patterns was enabled at the organization level. |
org_secret_scanning_push_protection_bypass_list
Acción | Descripción |
---|---|
org_secret_scanning_push_protection_bypass_list.add | A role or team was added to the push protection bypass list at the organization level. |
org_secret_scanning_push_protection_bypass_list.disable | Push protection settings for "Users who can bypass push protection for secret scanning" changed from "Specific roles or teams" to "Anyone with write access" at the organization level. |
org_secret_scanning_push_protection_bypass_list.enable | Push protection settings for "Users who can bypass push protection for secret scanning" changed from "Anyone with write access" to "Specific roles or teams" at the organization level. |
org_secret_scanning_push_protection_bypass_list.remove | A role or team was removed from the push protection bypass list at the organization level. |
organization_domain
Acción | Descripción |
---|---|
organization_domain.approve | A domain was approved for an organization. |
organization_domain.create | A domain was added to an organization. |
organization_domain.destroy | A domain was removed from an organization. |
organization_domain.verify | A domain was verified for an organization. |
packages
Acción | Descripción |
---|---|
packages.package_deleted | An entire package was deleted. |
packages.package_published | A package was published or republished to an organization. |
packages.package_version_deleted | A specific package version was deleted. |
packages.package_version_published | A specific package version was published or republished to a package. |
pages_protected_domain
Acción | Descripción |
---|---|
pages_protected_domain.create | A GitHub Pages verified domain was created for an organization or enterprise. |
pages_protected_domain.delete | A GitHub Pages verified domain was deleted from an organization or enterprise. |
pages_protected_domain.verify | A GitHub Pages domain was verified for an organization or enterprise. |
passkey
Acción | Descripción |
---|---|
passkey.register | A new passkey was added. |
passkey.remove | A new passkey was removed. |
payment_method
Acción | Descripción |
---|---|
payment_method.create | A new payment method was added, such as a new credit card or PayPal account. |
payment_method.remove | A payment method was removed. |
payment_method.update | An existing payment method was updated. |
personal_access_token
Acción | Descripción |
---|---|
personal_access_token.access_granted | A fine-grained personal access token was granted access to resources. |
personal_access_token.access_revoked | A fine-grained personal access token was revoked. The token can still read public organization resources. |
personal_access_token.create | Triggered when you create a fine-grained personal access token. |
personal_access_token.credential_regenerated | Triggered when you regenerate a fine-grained personal access token. |
personal_access_token.credential_revoked | A fine-grained personal access token was revoked by GitHub Advanced Security. |
personal_access_token.destroy | Triggered when you delete a fine-grained personal access token. |
personal_access_token.request_cancelled | A pending request for a fine-grained personal access token to access organization resources was canceled. |
personal_access_token.request_created | Triggered when a fine-grained personal access token was created to access organization resources and the organization requires approval before the token can access organization resources. |
personal_access_token.request_denied | A request for a fine-grained personal access token to access organization resources was denied. |
personal_access_token.update | A fine-grained personal access token was updated. |
profile_picture
Acción | Descripción |
---|---|
profile_picture.update | A profile picture was updated. |
project
Acción | Descripción |
---|---|
project.access | A project board visibility was changed. |
project.close | A project board was closed. |
project.create | A project board was created. |
project.delete | A project board was deleted. |
project.link | A repository was linked to a project board. |
project.open | A project board was reopened. |
project.rename | A project board was renamed. |
project.unlink | A repository was unlinked from a project board. |
project.update_org_permission | The project's base-level permission for all organization members was changed or removed. |
project.update_team_permission | A team's project board permission level was changed or when a team was added or removed from a project board. |
project.update_user_permission | A user was added to or removed from a project board or had their permission level changed. |
project.visibility_private | A project's visibility was changed from public to private. |
project.visibility_public | A project's visibility was changed from private to public. |
project_collaborator
Acción | Descripción |
---|---|
project_collaborator.add | A collaborator was added to a project. |
project_collaborator.remove | A collaborator was removed from a project. |
project_collaborator.update | A project collaborator's permission level was changed. |
project_field
Acción | Descripción |
---|---|
project_field.create | A field was created in a project board. |
project_field.delete | A field was deleted in a project board. |
project_view
Acción | Descripción |
---|---|
project_view.create | A view was created in a project board. |
project_view.delete | A view was deleted in a project board. |
protected_branch
Acción | Descripción |
---|---|
protected_branch.authorized_users_teams | The users, teams, or integrations allowed to bypass a branch protection were changed. |
protected_branch.branch_allowances | A protected branch allowance was given to a specific user, team or integration. |
protected_branch.create | Branch protection was enabled on a branch. |
protected_branch.destroy | Branch protection was disabled on a branch. |
protected_branch.dismiss_stale_reviews | Enforcement of dismissing stale pull requests was updated on a branch. |
protected_branch.dismissal_restricted_users_teams | Enforcement of restricting users and/or teams who can dismiss reviews was updated on a branch. |
protected_branch.policy_override | A branch protection requirement was overridden by a repository administrator. |
protected_branch.rejected_ref_update | A branch update attempt was rejected. |
protected_branch.update_admin_enforced | Branch protection was enforced for repository administrators. |
protected_branch.update_allow_deletions_enforcement_level | Branch deletion was enabled or disabled for a protected branch. |
protected_branch.update_allow_force_pushes_enforcement_level | Force pushes were enabled or disabled for a branch. |
protected_branch.update_ignore_approvals_from_contributors | Ignoring of approvals from contributors to a pull request was enabled or disabled for a branch. |
protected_branch.update_linear_history_requirement_enforcement_level | Required linear commit history was enabled or disabled for a branch. |
protected_branch.update_lock_allows_fetch_and_merge | Fork syncing was enabled or disabled for a read-only branch |
protected_branch.update_lock_branch_enforcement_level | The enforcement of a branch lock was updated. |
protected_branch.update_merge_queue_enforcement_level | Enforcement of the merge queue was modified for a branch. |
protected_branch.update_name | A branch name pattern was updated for a branch. |
protected_branch.update_pull_request_reviews_enforcement_level | Enforcement of required pull request reviews was updated for a branch. Can be 0 (deactivated), 1 (non-admins), or 2 (everyone). |
protected_branch.update_require_code_owner_review | Enforcement of required code owner review was updated for a branch. |
protected_branch.update_require_last_push_approval | Someone other than the person who pushed the last code-modifying commit to the branch must approve pull requests for the branch. |
protected_branch.update_required_approving_review_count | Enforcement of the required number of approvals before merging was updated on a branch. |
protected_branch.update_required_status_checks_enforcement_level | Enforcement of required status checks was updated for a branch. |
protected_branch.update_signature_requirement_enforcement_level | Enforcement of required commit signing was updated for a branch. |
protected_branch.update_strict_required_status_checks_policy | Enforcement of required status checks was updated for a branch. |
public_key
Acción | Descripción |
---|---|
public_key.create | An SSH key was added to a user account or a deploy key was added to a repository. |
public_key.delete | An SSH key was removed from a user account or a deploy key was removed from a repository. |
public_key.unverification_failure | A user account's SSH key or a repository's deploy key was unable to be unverified. |
public_key.unverify | A user account's SSH key or a repository's deploy key was unverified. |
public_key.update | A user account's SSH key or a repository's deploy key was updated. |
public_key.verification_failure | A user account's SSH key or a repository's deploy key was unable to be verified. |
public_key.verify | A user account's SSH key or a repository's deploy key was verified. |
pull_request
Acción | Descripción |
---|---|
pull_request.close | A pull request was closed without being merged. |
pull_request.converted_to_draft | A pull request was converted to a draft. |
pull_request.create | A pull request was created. |
pull_request.create_review_request | A review was requested on a pull request. |
pull_request.in_progress | A pull request was marked as in progress. |
pull_request.indirect_merge | A pull request was considered merged because the pull request's commits were merged into the target branch. |
pull_request.merge | A pull request was merged. |
pull_request.ready_for_review | A pull request was marked as ready for review. |
pull_request.remove_review_request | A review request was removed from a pull request. |
pull_request.reopen | A pull request was reopened after previously being closed. |
pull_request_review_comment
Acción | Descripción |
---|---|
pull_request_review_comment.create | A review comment was added to a pull request. |
pull_request_review_comment.delete | A review comment on a pull request was deleted. |
pull_request_review_comment.update | A review comment on a pull request was changed. |
pull_request_review
Acción | Descripción |
---|---|
pull_request_review.delete | A review on a pull request was deleted. |
pull_request_review.dismiss | A review on a pull request was dismissed. |
pull_request_review.submit | A review on a pull request was submitted. |
repo
Acción | Descripción |
---|---|
repo.access | The visibility of a repository changed. |
repo.actions_enabled | GitHub Actions was enabled for a repository. |
repo.add_member | A collaborator was added to a repository. |
repo.add_topic | A topic was added to a repository. |
repo.advanced_security_disabled | GitHub Advanced Security was disabled for a repository. |
repo.advanced_security_enabled | GitHub Advanced Security was enabled for a repository. |
repo.archived | A repository was archived. |
repo.change_merge_setting | Pull request merge options were changed for a repository. |
repo.code_scanning_analysis_deleted | Code scanning analysis for a repository was deleted. |
repo.code_scanning_autofix_disabled | Autofix for code scanning alerts was disabled for a repository. |
repo.code_scanning_autofix_enabled | Autofix for code scanning alerts was enabled for a repository. |
repo.code_scanning_configuration_for_branch_deleted | A code scanning configuration for a branch of a repository was deleted. |
repo.codeql_disabled | Code scanning using the default setup was disabled for a repository. |
repo.codeql_enabled | Code scanning using the default setup was enabled for a repository. |
repo.codeql_updated | Code scanning using the default setup was updated for a repository. |
repo.config.disable_collaborators_only | The interaction limit for collaborators only was disabled. |
repo.config.disable_contributors_only | The interaction limit for prior contributors only was disabled in a repository. |
repo.config.disable_sockpuppet_disallowed | The interaction limit for existing users only was disabled in a repository. |
repo.config.enable_collaborators_only | The interaction limit for collaborators only was enabled in a repository Users that are not collaborators or organization members were unable to interact with a repository for a set duration. |
repo.config.enable_contributors_only | The interaction limit for prior contributors only was enabled in a repository Users that are not prior contributors, collaborators or organization members were unable to interact with a repository for a set duration. |
repo.config.enable_sockpuppet_disallowed | The interaction limit for existing users was enabled in a repository New users aren't able to interact with a repository for a set duration Existing users of the repository, contributors, collaborators or organization members are able to interact with a repository. |
repo.create | A repository was created. |
repo.create_actions_secret | A GitHub Actions secret was created for a repository. |
repo.create_actions_variable | A GitHub Actions variable was created for a repository. |
repo.create_integration_secret | A Codespaces or Dependabot secret was created for a repository. |
repo.destroy | A repository was deleted. |
repo.disk_archive | A repository was archived on disk. |
repo.download_zip | A source code archive of a repository was downloaded as a ZIP file. |
repo.override_unlock | The repository was unlocked. |
repo.pages_cname | A GitHub Pages custom domain was modified in a repository. |
repo.pages_create | A GitHub Pages site was created. |
repo.pages_destroy | A GitHub Pages site was deleted. |
repo.pages_https_redirect_disabled | HTTPS redirects were disabled for a GitHub Pages site. |
repo.pages_https_redirect_enabled | HTTPS redirects were enabled for a GitHub Pages site. |
repo.pages_private | A GitHub Pages site visibility was changed to private. |
repo.pages_public | A GitHub Pages site visibility was changed to public. |
repo.pages_soft_delete | A GitHub Pages site was soft-deleted because its owner's plan changed. |
repo.pages_soft_delete_restore | A GitHub Pages site that was previously soft-deleted was restored. |
repo.pages_source | A GitHub Pages source was modified. |
repo.register_self_hosted_runner | A new self-hosted runner was registered. |
repo.remove_actions_secret | A GitHub Actions secret was deleted for a repository. |
repo.remove_actions_variable | A GitHub Actions variable was deleted for a repository. |
repo.remove_integration_secret | A Codespaces or Dependabot secret was deleted for a repository. |
repo.remove_member | A collaborator was removed from a repository. |
repo.remove_self_hosted_runner | A self-hosted runner was removed. |
repo.remove_topic | A topic was removed from a repository. |
repo.rename | A repository was renamed. |
repo.self_hosted_runner_offline | The runner application was stopped. This event is not available in the web interface, only via the REST API, audit log streaming, or JSON/CSV exports. |
repo.self_hosted_runner_online | The runner application was started. This event is not available in the web interface, only via the REST API, audit log streaming, or JSON/CSV exports. |
repo.self_hosted_runner_updated | The runner application was updated. This event is not included in the JSON/CSV export. |
repo.set_actions_fork_pr_approvals_policy | The setting for requiring approvals for workflows from public forks was changed for a repository. |
repo.set_actions_private_fork_pr_approvals_policy | The policy for requiring approval for fork pull request workflows from collaborators without write access to private repos was changed for a repository. |
repo.set_actions_retention_limit | The retention period for GitHub Actions artifacts and logs in a repository was changed. |
repo.set_default_workflow_permissions | The default permissions granted to the GITHUB_TOKEN when running workflows were changed for a repository. |
repo.set_fork_pr_workflows_policy | Triggered when the policy for workflows on private repository forks is changed. |
repo.set_workflow_permission_can_approve_pr | The policy for allowing GitHub Actions to create and approve pull requests was changed for a repository. |
repo.staff_unlock | An enterprise owner or GitHub staff (with permission from a repository administrator) temporarily unlocked the repository. |
repo.temporary_access_granted | Temporary access was enabled for a repository. |
repo.transfer | A user accepted a request to receive a transferred repository. |
repo.transfer_outgoing | A repository was transferred to another repository network. |
repo.transfer_start | A user sent a request to transfer a repository to another user or organization. |
repo.unarchived | A repository was unarchived. |
repo.update_actions_access_settings | The setting to control how a repository was used by GitHub Actions workflows in other repositories was changed. |
repo.update_actions_secret | A GitHub Actions secret was updated for a repository. |
repo.update_actions_settings | A repository administrator changed GitHub Actions policy settings for a repository. |
repo.update_actions_variable | A GitHub Actions variable was updated for a repository. |
repo.update_default_branch | The default branch for a repository was changed. |
repo.update_integration_secret | A Codespaces or Dependabot secret was updated for a repository. |
repo.update_member | A user's permission to a repository was changed. |
repository_branch_protection_evaluation
Acción | Descripción |
---|---|
repository_branch_protection_evaluation.disable | Branch protections were disabled for the repository. |
repository_branch_protection_evaluation.enable | Branch protections were enabled for this repository. |
repository_image
Acción | Descripción |
---|---|
repository_image.create | An image to represent a repository was uploaded. |
repository_image.destroy | An image to represent a repository was deleted. |
repository_invitation
Acción | Descripción |
---|---|
repository_invitation.accept | An invitation to join a repository was accepted. |
repository_invitation.cancel | An invitation to join a repository was canceled. |
repository_invitation.create | An invitation to join a repository was sent. |
repository_invitation.reject | An invitation to join a repository was declined. |
repository_ruleset
Acción | Descripción |
---|---|
repository_ruleset.create | A repository ruleset was created. |
repository_ruleset.destroy | A repository ruleset was deleted. |
repository_ruleset.update | A repository ruleset was edited. |
repository_secret_scanning_automatic_validity_checks
Acción | Descripción |
---|---|
repository_secret_scanning_automatic_validity_checks.disabled | Automatic partner validation checks have been disabled at the repository level |
repository_secret_scanning_automatic_validity_checks.enabled | Automatic partner validation checks have been enabled at the repository level |
repository_secret_scanning_custom_pattern
Acción | Descripción |
---|---|
repository_secret_scanning_custom_pattern.create | A custom pattern was created for secret scanning in a repository. |
repository_secret_scanning_custom_pattern.delete | A custom pattern was removed from secret scanning in a repository. |
repository_secret_scanning_custom_pattern.publish | A custom pattern was published for secret scanning in a repository. |
repository_secret_scanning_custom_pattern.update | Changes to a custom pattern were saved and a dry run was executed for secret scanning in a repository. |
repository_secret_scanning_custom_pattern_push_protection
Acción | Descripción |
---|---|
repository_secret_scanning_custom_pattern_push_protection.disabled | Push protection for a custom pattern for secret scanning was disabled for your repository. |
repository_secret_scanning_custom_pattern_push_protection.enabled | Push protection for a custom pattern for secret scanning was enabled for your repository. |
repository_secret_scanning
Acción | Descripción |
---|---|
repository_secret_scanning.disable | Secret scanning was disabled for a repository. |
repository_secret_scanning.enable | Secret scanning was enabled for a repository. |
repository_secret_scanning_non_provider_patterns
Acción | Descripción |
---|---|
repository_secret_scanning_non_provider_patterns.disabled | Secret scanning for non-provider patterns was disabled at the repository level. |
repository_secret_scanning_non_provider_patterns.enabled | Secret scanning for non-provider patterns was enabled at the repository level. |
repository_secret_scanning_push_protection_bypass_list
Acción | Descripción |
---|---|
repository_secret_scanning_push_protection_bypass_list.add | A role or team was added to the push protection bypass list at the repository level. |
repository_secret_scanning_push_protection_bypass_list.disable | Push protection settings for "Users who can bypass push protection for secret scanning" changed from "Specific roles or teams" to "Anyone with write access" at the repository level. |
repository_secret_scanning_push_protection_bypass_list.enable | Push protection settings for "Users who can bypass push protection for secret scanning" changed from "Anyone with write access" to "Specific roles or teams" at the repository level. |
repository_secret_scanning_push_protection_bypass_list.remove | A role or team was removed from the push protection bypass list at the repository level. |
repository_secret_scanning_push_protection
Acción | Descripción |
---|---|
repository_secret_scanning_push_protection.disable | Secret scanning push protection was disabled for a repository. |
repository_secret_scanning_push_protection.enable | Secret scanning push protection was enabled for a repository. |
restrict_notification_delivery
Acción | Descripción |
---|---|
restrict_notification_delivery.disable | Email notification restrictions for an organization or enterprise were disabled. |
restrict_notification_delivery.enable | Email notification restrictions for an organization or enterprise were enabled. |
secret_scanning_alert
Acción | Descripción |
---|---|
secret_scanning_alert.create | GitHub detected a secret and created a secret scanning alert. |
secret_scanning_alert.reopen | A secret scanning alert was reopened. |
secret_scanning_alert.resolve | A secret scanning alert was resolved. |
secret_scanning_alert.revoke | A secret scanning alert was revoked. |
secret_scanning_alert.validate | A secret scanning alert was validated. |
secret_scanning
Acción | Descripción |
---|---|
secret_scanning.disable | Secret scanning was disabled for all existing repositories. |
secret_scanning.enable | Secret scanning was enabled for all existing repositories. |
secret_scanning_new_repos
Acción | Descripción |
---|---|
secret_scanning_new_repos.disable | Secret scanning was disabled for all new repositories. |
secret_scanning_new_repos.enable | Secret scanning was enabled for all new repositories. |
secret_scanning_push_protection
Acción | Descripción |
---|---|
secret_scanning_push_protection.bypass | Triggered when a user bypasses the push protection on a secret detected by secret scanning. |
secret_scanning_push_protection_request
Acción | Descripción |
---|---|
secret_scanning_push_protection_request.approve | A request to bypass secret scanning push protection was approved by a user. |
secret_scanning_push_protection_request.deny | A request to bypass secret scanning push protection was denied by a user. |
secret_scanning_push_protection_request.request | A user requested to bypass secret scanning push protection. |
security_key
Acción | Descripción |
---|---|
security_key.register | A security key was registered for an account. |
security_key.remove | A security key was removed from an account. |
sponsors
Acción | Descripción |
---|---|
sponsors.agreement_sign | A GitHub Sponsors agreement was signed on behalf of an organization. |
sponsors.custom_amount_settings_change | Custom amounts for GitHub Sponsors were enabled or disabled, or the suggested custom amount was changed. |
sponsors.fiscal_host_change | The fiscal host for a GitHub Sponsors listing was updated. |
sponsors.repo_funding_links_file_action | The FUNDING file in a repository was changed. |
sponsors.sponsor_sponsorship_cancel | A sponsorship was canceled. |
sponsors.sponsor_sponsorship_create | A sponsorship was created, by sponsoring an account. |
sponsors.sponsor_sponsorship_payment_complete | After you sponsor an account and a payment has been processed, the sponsorship payment was marked as complete. |
sponsors.sponsor_sponsorship_preference_change | The option to receive email updates from a sponsored account was changed. |
sponsors.sponsor_sponsorship_tier_change | A sponsorship was upgraded or downgraded. |
sponsors.sponsored_developer_approve | A GitHub Sponsors account was approved. |
sponsors.sponsored_developer_create | A GitHub Sponsors account was created. |
sponsors.sponsored_developer_disable | A GitHub Sponsors account was disabled. |
sponsors.sponsored_developer_profile_update | The profile for GitHub Sponsors account was edited. |
sponsors.sponsored_developer_redraft | A GitHub Sponsors account was returned to draft state from approved state. |
sponsors.sponsored_developer_request_approval | An application for GitHub Sponsors was submitted for approval. |
sponsors.sponsored_developer_tier_description_update | The description for a sponsorship tier was changed. |
sponsors.sponsored_developer_update_newsletter_send | Triggered when you send an email update to your sponsors. |
sponsors.sponsors_patreon_user_create | A Patreon account was linked to a user account for use with GitHub Sponsors. |
sponsors.sponsors_patreon_user_destroy | A Patreon account for use with GitHub Sponsors was unlinked from a user account. |
sponsors.update_tier_repository | A GitHub Sponsors tier changed access for a repository. |
sponsors.update_tier_welcome_message | The welcome message for a GitHub Sponsors tier for an organization was updated. |
sponsors.waitlist_join | You join the waitlist to join GitHub Sponsors. |
sponsors.withdraw_agreement_signature | A signature was withdrawn from a GitHub Sponsors agreement that applies to an organization. |
ssh_certificate_authority
Acción | Descripción |
---|---|
ssh_certificate_authority.create | An SSH certificate authority for an organization or enterprise was created. |
ssh_certificate_authority.destroy | An SSH certificate authority for an organization or enterprise was deleted. |
ssh_certificate_requirement
Acción | Descripción |
---|---|
ssh_certificate_requirement.disable | The requirement for members to use SSH certificates to access an organization resources was disabled. |
ssh_certificate_requirement.enable | The requirement for members to use SSH certificates to access an organization resources was enabled. |
staff
Acción | Descripción |
---|---|
staff.set_domain_token_expiration | The verification code expiry time for an organization or enterprise domain was set. |
staff.unverify_domain | An organization or enterprise domain was unverified. |
staff.verify_domain | An organization or enterprise domain was verified. |
successor_invitation
Acción | Descripción |
---|---|
successor_invitation.accept | Triggered when you accept a succession invitation. |
successor_invitation.cancel | Triggered when you cancel a succession invitation. |
successor_invitation.create | Triggered when you create a succession invitation. |
successor_invitation.decline | Triggered when you decline a succession invitation. |
successor_invitation.revoke | Triggered when you revoke a succession invitation. |
team
Acción | Descripción |
---|---|
team.add_member | A member of an organization was added to a team. |
team.add_repository | A team was given access and permissions to a repository. |
team.change_parent_team | A child team was created or a child team's parent was changed. |
team.change_privacy | A team's privacy level was changed. |
team.create | A new team is created. |
team.demote_maintainer | A user was demoted from a team maintainer to a team member. |
team.destroy | A team was deleted. |
team.promote_maintainer | A user was promoted from a team member to a team maintainer. |
team.remove_member | An organization member was removed from a team. |
team.remove_repository | A repository was removed from a team's control. |
team.rename | A team's name was changed. |
team.update_repository_permission | A team's permission to a repository was changed. |
team_discussions
Acción | Descripción |
---|---|
team_discussions.clear | An organization owner cleared the setting to allow team discussions for an organization or enterprise. |
team_discussions.disable | Team discussions were disabled for an organization. |
team_discussions.enable | Team discussions were enabled for an organization. |
team_sync_tenant
Acción | Descripción |
---|---|
team_sync_tenant.disabled | Team synchronization with a tenant was disabled. |
team_sync_tenant.enabled | Team synchronization with a tenant was enabled. |
trusted_device
Acción | Descripción |
---|---|
trusted_device.register | A new trusted device was added. |
trusted_device.remove | A trusted device was removed. |
two_factor_authentication
Acción | Descripción |
---|---|
two_factor_authentication.add_factor | A secondary authentication factor was added to a user account. |
two_factor_authentication.disabled | Two-factor authentication was disabled for a user account. |
two_factor_authentication.enabled | Two-factor authentication was enabled for a user account. |
two_factor_authentication.password_reset_fallback_sms | A one-time password code was sent to a user account fallback phone number. |
two_factor_authentication.recovery_codes_regenerated | Two factor recovery codes were regenerated for a user account. |
two_factor_authentication.remove_factor | A secondary authentication factor was removed from a user account. |
two_factor_authentication.sign_in_fallback_sms | A one-time password code was sent to a user account fallback phone number. |
two_factor_authentication.update_fallback | The two-factor authentication fallback for a user account was changed. |
user
Acción | Descripción |
---|---|
user.add_email | An email address was added to a user account. |
user.async_delete | An asynchronous job was started to destroy a user account, eventually triggering a user.delete event. |
user.audit_log_export | Audit log entries were exported. |
user.block_user | A user was blocked by another user. |
user.change_password | A user changed their password. |
user.codespaces_trusted_repo_access_granted | Triggered when you allow the codespaces you create for a repository to access other repositories owned by your personal account. |
user.codespaces_trusted_repo_access_revoked | Triggered when you disallow the codespaces you create for a repository to access other repositories owned by your personal account. |
user.create | A new user account was created. |
user.create_integration_secret | A user secret for Codespaces was created. |
user.creation_rate_limit_exceeded | The rate of creation of user accounts, applications, issues, pull requests or other resources exceeded the configured rate limits, or too many users were followed too quickly. |
user.delete | A user account was destroyed by an asynchronous job. |
user.demote | A site administrator was demoted to an ordinary user account. |
user.destroy | A user deleted his or her account, triggering user.async_delete. |
user.failed_login | A user tried to sign in with an incorrect username, password, or two-factor authentication code. |
user.flag_as_large_scale_contributor | A user account was flagged as a large scale contributor. Only contributions from public repositories the user owns will be shown in their contribution graph, in order to prevent timeouts. |
user.forgot_password | A user requested a password reset. |
user.hide_private_contributions_count | A user changed the visibility of their private contributions. The number of contributions to private repositories on the user's profile are now hidden. |
user.login | A user signed in. |
user.logout | A user signed out. |
user.minimize_comment | A comment made by a user was minimized. |
user.new_device_used | A user signed in from a new device. |
user.promote | An ordinary user account was promoted to a site administrator. |
user.recreate | A user's account was restored. |
user.remove_email | An email address was removed from a user account. |
user.remove_integration_secret | A user secret for Codespaces was deleted. |
user.remove_large_scale_contributor_flag | A user account was no longer flagged as a large scale contributor. |
user.rename | A username was changed. |
user.report_content | Triggered when you report an issue or pull request, or a comment on an issue, pull request, or commit. |
user.reset_password | A user reset their account password. |
user.show_private_contributions_count | A user changed the visibility of their private contributions. The number of contributions to private repositories on the user's profile are now shown. |
user.sign_in_from_unrecognized_device | A user signed in from an unrecognized device. |
user.sign_in_from_unrecognized_device_and_location | A user signed in from an unrecognized device and location. |
user.sign_in_from_unrecognized_location | A user signed in from an unrecognized location. |
user.suspend | A user account was suspended. |
user.two_factor_challenge_failure | A 2FA challenge issued for a user account failed. |
user.two_factor_challenge_success | A 2FA challenge issued for a user account succeeded. |
user.two_factor_recover | A user used their 2FA recovery codes. |
user.two_factor_recovery_codes_downloaded | A user downloaded 2FA recovery codes for their account. |
user.two_factor_recovery_codes_printed | A user printed 2FA recovery codes for their account. |
user.two_factor_recovery_codes_viewed | A user viewed 2FA recovery codes for their account. |
user.two_factor_requested | A user was prompted for a two-factor authentication code. |
user.unblock_user | A user was unblocked by another user. |
user.unminimize_comment | A comment made by a user was unminimized. |
user.unsuspend | A user account was unsuspended. |
user.update_integration_secret | A user secret for Codespaces was updated. |
user_email
Acción | Descripción |
---|---|
user_email.confirm_claim | An enterprise managed user claimed an email address. |
user_status
Acción | Descripción |
---|---|
user_status.destroy | Triggered when you clear the status on your profile. |
user_status.update | Triggered when you set or change the status on your profile. |
workflows
Acción | Descripción |
---|---|
workflows.approve_workflow_job | A workflow job was approved. |
workflows.cancel_workflow_run | A workflow run was cancelled. |
workflows.completed_workflow_run | A workflow status changed to completed. This event is not available in the web interface, only via the REST API, audit log streaming, or JSON/CSV exports. |
workflows.created_workflow_run | A workflow run was create. This event is not available in the web interface, only via the REST API, audit log streaming, or JSON/CSV exports. |
workflows.delete_workflow_run | A workflow run was deleted. |
workflows.disable_workflow | A workflow was disabled. |
workflows.enable_workflow | A workflow was enabled, after previously being disabled by disable_workflow. |
workflows.pin_workflow | A workflow was pinned. |
workflows.prepared_workflow_job | A workflow job was started. Includes the list of secrets that were provided to the job. This event is not available in the web interface, only via the REST API, audit log streaming, or JSON/CSV exports. |
workflows.reject_workflow_job | A workflow job was rejected. |
workflows.rerun_workflow_run | A workflow run was re-run. |
workflows.unpin_workflow | A workflow was unpinned after previously being pinned. |