Skip to content

permission-levels-for-repository-security-advisories.md

Latest commit

 

History

History
50 lines (43 loc) · 5.09 KB

permission-levels-for-repository-security-advisories.md

File metadata and controls

50 lines (43 loc) · 5.09 KB
title Permission levels for repository security advisories
intro The actions you can take in a repository security advisory depend on whether you have admin or write permissions to the security advisory.
redirect_from
/articles/permission-levels-for-maintainer-security-advisories
/github/managing-security-vulnerabilities/permission-levels-for-maintainer-security-advisories
/github/managing-security-vulnerabilities/permission-levels-for-security-advisories
/code-security/security-advisories/permission-levels-for-security-advisories
/code-security/repository-security-advisories/permission-levels-for-repository-security-advisories
/code-security/security-advisories/repository-security-advisories/permission-levels-for-repository-security-advisories
/code-security/security-advisories/working-with-repository-security-advisories/permission-levels-for-repository-security-advisories
versions
fpt ghec
*
*
topics
Security advisories
Vulnerabilities
Permissions
shortTitle Permission levels
contentType reference

Permissions overview

{% data reusables.repositories.security-advisory-admin-permissions %}

Action Write permissions Admin permissions
See a draft security advisory {% octicon "check" aria-label="Yes" %} {% octicon "check" aria-label="Yes" %}
Add collaborators to the security advisory (see AUTOTITLE) {% octicon "x" aria-label="No" %} {% octicon "check" aria-label="Yes" %}
Edit and delete any comments in the security advisory {% octicon "check" aria-label="Yes" %} {% octicon "check" aria-label="Yes" %}
Create a temporary private fork in the security advisory (see AUTOTITLE) {% octicon "x" aria-label="No" %} {% octicon "check" aria-label="Yes" %}
Add changes to a temporary private fork in the security advisory (see AUTOTITLE) {% octicon "check" aria-label="Yes" %} {% octicon "check" aria-label="Yes" %}
Create pull requests in a temporary private fork (see AUTOTITLE) {% octicon "check" aria-label="Yes" %} {% octicon "check" aria-label="Yes" %}
Merge changes in the security advisory (see AUTOTITLE) {% octicon "x" aria-label="No" %} {% octicon "check" aria-label="Yes" %}
Add and edit metadata in the security advisory (see AUTOTITLE) {% octicon "check" aria-label="Yes" %} {% octicon "check" aria-label="Yes" %}
Add and remove credits for a security advisory (see AUTOTITLE) {% octicon "check" aria-label="Yes" %} {% octicon "check" aria-label="Yes" %}
Close the draft security advisory {% octicon "x" aria-label="No" %} {% octicon "check" aria-label="Yes" %}
Publish the security advisory (see AUTOTITLE) {% octicon "x" aria-label="No" %} {% octicon "check" aria-label="Yes" %}

Permission differences for global security advisories

Unlike repository security advisories, anyone can contribute to global security advisories in the {% data variables.product.prodname_advisory_database %} at github.com/advisories. Edits to global advisories will not change or affect how the advisory appears on the repository. See AUTOTITLE.

Further reading