github-actions[bot]
commented
4 months ago Thank you very much for opening up this issue! I am currently a bit overwhelmed by the many requests that arrive each week, so please forgive me, if I fail to respond personally. I am still very likely to at least skim read your request and I'll probably try to fix all (real) bugs if possible and I will likely review every single PR being made (please, give me a heads up if you intent to do so) and I will try to work on popular requests (please upvote via thumbs up on the original issue) whenever possible, but trying to respond to every single issue over the last years has been kind of draining and I need to adjust my approach for this project to remain fun for me and to make any progress with actually coding new stuff. Thanks for your understanding!
Rohaq
johannesjo
BanditsBacon
As referenced in this thread: https://github.com/johannesjo/super-productivity/discussions/2714#discussioncomment-9490660
There's currently no documentation or guidance in the UI for what the minimum Access Token permissions required are for the Gitlab integration.
It's good security practice to restrict permissions on these access tokens, even for local applications, in order to mitigate any damage that could be done if they were ever leaked.
Could these permissions be determined, and added to documentation? I'd also suggest displaying these in the config UI in a future release.
Screenshot of available permissions on Gitlab.com: