Dependabot
data class DependabotOrganizationSecretRepositoriesArgs(val secretName: Output<String>? = null, val selectedRepositoryIds: Output<List<Int>>? = null) : ConvertibleToJava<DependabotOrganizationSecretRepositoriesArgs>
This resource allows you to manage the repository allow list for existing GitHub Dependabot secrets within your GitHub organization. You must have write access to an organization secret to use this resource. This resource is only applicable when visibility of the existing organization secret has been set to selected.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as github from "@pulumi/github";
const repo = github.getRepository({
fullName: "my-org/repo",
});
const exampleSecret = new github.DependabotOrganizationSecret("example_secret", {
secretName: "example_secret_name",
visibility: "private",
plaintextValue: someSecretString,
});
const orgSecretRepos = new github.DependabotOrganizationSecretRepositories("org_secret_repos", {
secretName: exampleSecret.secretName,
selectedRepositoryIds: [repo.then(repo => repo.repoId)],
});Content copied to clipboard
import pulumi
import pulumi_github as github
repo = github.get_repository(full_name="my-org/repo")
example_secret = github.DependabotOrganizationSecret("example_secret",
secret_name="example_secret_name",
visibility="private",
plaintext_value=some_secret_string)
org_secret_repos = github.DependabotOrganizationSecretRepositories("org_secret_repos",
secret_name=example_secret.secret_name,
selected_repository_ids=[repo.repo_id])Content copied to clipboard
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Github = Pulumi.Github;
return await Deployment.RunAsync(() =>
{
var repo = Github.GetRepository.Invoke(new()
{
FullName = "my-org/repo",
});
var exampleSecret = new Github.DependabotOrganizationSecret("example_secret", new()
{
SecretName = "example_secret_name",
Visibility = "private",
PlaintextValue = someSecretString,
});
var orgSecretRepos = new Github.DependabotOrganizationSecretRepositories("org_secret_repos", new()
{
SecretName = exampleSecret.SecretName,
SelectedRepositoryIds = new[]
{
repo.Apply(getRepositoryResult => getRepositoryResult.RepoId),
},
});
});Content copied to clipboard
package main
import (
"github.com/pulumi/pulumi-github/sdk/v6/go/github"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
repo, err := github.LookupRepository(ctx, &github.LookupRepositoryArgs{
FullName: pulumi.StringRef("my-org/repo"),
}, nil)
if err != nil {
return err
}
exampleSecret, err := github.NewDependabotOrganizationSecret(ctx, "example_secret", &github.DependabotOrganizationSecretArgs{
SecretName: pulumi.String("example_secret_name"),
Visibility: pulumi.String("private"),
PlaintextValue: pulumi.Any(someSecretString),
})
if err != nil {
return err
}
_, err = github.NewDependabotOrganizationSecretRepositories(ctx, "org_secret_repos", &github.DependabotOrganizationSecretRepositoriesArgs{
SecretName: exampleSecret.SecretName,
SelectedRepositoryIds: pulumi.IntArray{
pulumi.Int(repo.RepoId),
},
})
if err != nil {
return err
}
return nil
})
}Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.github.GithubFunctions;
import com.pulumi.github.inputs.GetRepositoryArgs;
import com.pulumi.github.DependabotOrganizationSecret;
import com.pulumi.github.DependabotOrganizationSecretArgs;
import com.pulumi.github.DependabotOrganizationSecretRepositories;
import com.pulumi.github.DependabotOrganizationSecretRepositoriesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var repo = GithubFunctions.getRepository(GetRepositoryArgs.builder()
.fullName("my-org/repo")
.build());
var exampleSecret = new DependabotOrganizationSecret("exampleSecret", DependabotOrganizationSecretArgs.builder()
.secretName("example_secret_name")
.visibility("private")
.plaintextValue(someSecretString)
.build());
var orgSecretRepos = new DependabotOrganizationSecretRepositories("orgSecretRepos", DependabotOrganizationSecretRepositoriesArgs.builder()
.secretName(exampleSecret.secretName())
.selectedRepositoryIds(repo.applyValue(getRepositoryResult -> getRepositoryResult.repoId()))
.build());
}
}Content copied to clipboard
resources:
exampleSecret:
type: github:DependabotOrganizationSecret
name: example_secret
properties:
secretName: example_secret_name
visibility: private
plaintextValue: ${someSecretString}
orgSecretRepos:
type: github:DependabotOrganizationSecretRepositories
name: org_secret_repos
properties:
secretName: ${exampleSecret.secretName}
selectedRepositoryIds:
- ${repo.repoId}
variables:
repo:
fn::invoke:
function: github:getRepository
arguments:
fullName: my-org/repoContent copied to clipboard
Import
This resource can be imported using an ID made up of the secret name:
$ pulumi import github:index/dependabotOrganizationSecretRepositories:DependabotOrganizationSecretRepositories test_secret_repos test_secret_nameContent copied to clipboard