search

kentaro-m / auto-assign

🤖 A Probot app that adds reviewers to pull requests when pull requests are opened.
https://probot.github.io/apps/auto-assign/
ISC License
249 stars 55 forks source link

Update proper permission #62

Closed kentaro-m closed 5 years ago

kentaro-m commented 5 years ago

Describe the bug Currently, the auto-assign app has permission too much to run it.

I added permissions (read access for repository contents and single file) to resolve Issue #31 that the app doesn't have permission to call GitHub API in the private repository to get config file (.github/auto_assign.yml).

But, when I was pointed out from the user, I noticed that the app need only permission for the single file (.github/auto_assig.yml).

I want to update proper permission.

Expected behavior Update the permissions with following:

Current:

New:

Additional context Before actually changing, I will check whether it works normally in the test environment.

When updating the permission, Github will be sent email to all install users as to whether permission updates is permitted.

stale[bot] commented 5 years ago

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.