privilegedescalation/org
12
0
Fork 0
Code Issues 1 Pull Requests Actions Packages Projects Releases Wiki Activity
Files
onboard-kubectl-karen
org/github-apps/qa.json
T
Chris Farhood f3f3806f60 Add role-based GitHub App manifests 
Four roles with scoped permissions enforcing PR workflow at GitHub level:
- CEO: merge authority, org admin
- CTO: PR review/approval, full engineering + workflows
- QA: PR review/approval, read-only contents, CI monitoring
- Engineer: push branches, open PRs, CI execution

Apps are org-scoped. PEM naming: <org>-<role>.pem
Branch protection rulesets to be configured after app creation.

Co-Authored-By: Paperclip <noreply@paperclip.ing>
2026-03-20 07:30:28 -04:00

18 lines
505 B
JSON
Raw Permalink Blame History

{
"name": "privilegedescalation-qa",
"url": "https://github.com/privilegedescalation",
"hook_attributes": {
"url": "https://example.com/placeholder"
},
"redirect_url": "https://github.com/privilegedescalation",
"public": false,
"default_permissions": {
"contents": "read",
"issues": "write",
"pull_requests": "write",
"actions": "read",
"metadata": "read"
},
"default_events": [],
"description": "QA agent \u2014 PR review/approval, bug filing, CI monitoring"
}
Reference in New Issue View Git Blame Copy Permalink