Enterprise Server 3.20 actualmente está disponible como versión candidata para lanzamiento.

Ahora la API REST está versionada. Para obtener más información, consulta "Acerca del control de versiones de la API".

Puntos de conexión de API REST para la protección contra inserción del análisis de secretos

Usa la API de REST para administrar la protección contra inserción del análisis de secretos.

List enterprise pattern configurations

Lists the secret scanning pattern configurations for an enterprise.

Personal access tokens (classic) need the admin:enterprise scope to use this endpoint.

Tokens de acceso granulares para "List enterprise pattern configurations"

Este punto de acceso no funciona con tokens de acceso de usuario de la aplicación de GitHub, tokens de acceso de instalación de la aplicación de GitHub ni tokens de acceso personales de granulación fina.

Parámetros para "List enterprise pattern configurations"

Encabezados
accept string

Setting to application/vnd.github+json is recommended.

Parámetros de ruta
enterprise string Obligatorio

The slug version of the enterprise name.

Códigos de estado de respuesta HTTP para "List enterprise pattern configurations"

código de estadoDescripción
200

OK

403

Forbidden

404

Resource not found

Ejemplos de código para "List enterprise pattern configurations"

Ejemplo de solicitud

get/enterprises/{enterprise}/secret-scanning/pattern-configurations
curl -L \ -H "Accept: application/vnd.github+json" \ -H "Authorization: Bearer <YOUR-TOKEN>" \ -H "X-GitHub-Api-Version: 2022-11-28" \ http(s)://HOSTNAME/api/v3/enterprises/ENTERPRISE/secret-scanning/pattern-configurations

Response

Status: 200
{ "pattern_config_version": "0ujsswThIGTUYm2K8FjOOfXtY1K", "provider_pattern_overrides": [ { "token_type": "GITHUB_PERSONAL_ACCESS_TOKEN", "slug": "github_personal_access_token_legacy_v2", "display_name": "GitHub Personal Access Token (Legacy v2)", "alert_total": 15, "alert_total_percentage": 36, "false_positives": 2, "false_positive_rate": 13, "bypass_rate": 13, "default_setting": "enabled", "setting": "enabled", "enterprise_setting": "enabled" } ], "custom_pattern_overrides": [ { "token_type": "cp_2", "custom_pattern_version": "0ujsswThIGTUYm2K8FjOOfXtY1K", "slug": "custom-api-key", "display_name": "Custom API Key", "alert_total": 15, "alert_total_percentage": 36, "false_positives": 3, "false_positive_rate": 20, "bypass_rate": 20, "default_setting": "disabled", "setting": "enabled" } ] }

Update enterprise pattern configurations

Updates the secret scanning pattern configurations for an enterprise.

Personal access tokens (classic) need the admin:enterprise scope to use this endpoint.

Tokens de acceso granulares para "Update enterprise pattern configurations"

Este punto de acceso no funciona con tokens de acceso de usuario de la aplicación de GitHub, tokens de acceso de instalación de la aplicación de GitHub ni tokens de acceso personales de granulación fina.

Parámetros para "Update enterprise pattern configurations"

Encabezados
accept string

Setting to application/vnd.github+json is recommended.

Parámetros de ruta
enterprise string Obligatorio

The slug version of the enterprise name.

Parámetros del cuerpo
pattern_config_version string or null

The version of the entity. This is used to confirm you're updating the current version of the entity and mitigate unintentionally overriding someone else's update.

provider_pattern_settings array of objects

Pattern settings for provider patterns.

token_type string

The ID of the pattern to configure.

push_protection_setting string

Push protection setting to set for the pattern.

Puede ser uno de los siguientes: not-set, disabled, enabled

custom_pattern_settings array of objects

Pattern settings for custom patterns.

token_type string

The ID of the pattern to configure.

custom_pattern_version string or null

The version of the entity. This is used to confirm you're updating the current version of the entity and mitigate unintentionally overriding someone else's update.

push_protection_setting string

Push protection setting to set for the pattern.

Puede ser uno de los siguientes: disabled, enabled

Códigos de estado de respuesta HTTP para "Update enterprise pattern configurations"

código de estadoDescripción
200

OK

400

Bad Request

403

Forbidden

404

Resource not found

409

Conflict

422

Validation failed, or the endpoint has been spammed.

Ejemplos de código para "Update enterprise pattern configurations"

Ejemplo de solicitud

patch/enterprises/{enterprise}/secret-scanning/pattern-configurations
curl -L \ -X PATCH \ -H "Accept: application/vnd.github+json" \ -H "Authorization: Bearer <YOUR-TOKEN>" \ -H "X-GitHub-Api-Version: 2022-11-28" \ http(s)://HOSTNAME/api/v3/enterprises/ENTERPRISE/secret-scanning/pattern-configurations \ -d '{"pattern_config_version":"0ujsswThIGTUYm2K8FjOOfXtY1K","provider_pattern_settings":[{"token_type":"GITHUB_PERSONAL_ACCESS_TOKEN","push_protection_setting":"enabled"}],"custom_pattern_settings":[{"token_type":"cp_2","custom_pattern_version":"0ujsswThIGTUYm2K8FjOOfXtY1K","push_protection_setting":"enabled"}]}'

Response

Status: 200
{ "pattern_config_version": "0ujsswThIGTUYm2K8FjOOfXtY1K" }

List organization pattern configurations

Lists the secret scanning pattern configurations for an organization.

Personal access tokens (classic) need the read:org scope to use this endpoint.

Tokens de acceso granulares para "List organization pattern configurations"

Este punto de conexión funciona con los siguientes tipos de token pormenorizados:

El token pormenorizado debe tener el siguiente conjunto de permisos:

  • "Administration" organization permissions (read)

Parámetros para "List organization pattern configurations"

Encabezados
accept string

Setting to application/vnd.github+json is recommended.

Parámetros de ruta
org string Obligatorio

The organization name. The name is not case sensitive.

Códigos de estado de respuesta HTTP para "List organization pattern configurations"

código de estadoDescripción
200

OK

403

Forbidden

404

Resource not found

Ejemplos de código para "List organization pattern configurations"

Ejemplo de solicitud

get/orgs/{org}/secret-scanning/pattern-configurations
curl -L \ -H "Accept: application/vnd.github+json" \ -H "Authorization: Bearer <YOUR-TOKEN>" \ -H "X-GitHub-Api-Version: 2022-11-28" \ http(s)://HOSTNAME/api/v3/orgs/ORG/secret-scanning/pattern-configurations

Response

Status: 200
{ "pattern_config_version": "0ujsswThIGTUYm2K8FjOOfXtY1K", "provider_pattern_overrides": [ { "token_type": "GITHUB_PERSONAL_ACCESS_TOKEN", "slug": "github_personal_access_token_legacy_v2", "display_name": "GitHub Personal Access Token (Legacy v2)", "alert_total": 15, "alert_total_percentage": 36, "false_positives": 2, "false_positive_rate": 13, "bypass_rate": 13, "default_setting": "enabled", "setting": "enabled", "enterprise_setting": "enabled" } ], "custom_pattern_overrides": [ { "token_type": "cp_2", "custom_pattern_version": "0ujsswThIGTUYm2K8FjOOfXtY1K", "slug": "custom-api-key", "display_name": "Custom API Key", "alert_total": 15, "alert_total_percentage": 36, "false_positives": 3, "false_positive_rate": 20, "bypass_rate": 20, "default_setting": "disabled", "setting": "enabled" } ] }

Update organization pattern configurations

Updates the secret scanning pattern configurations for an organization.

Personal access tokens (classic) need the write:org scope to use this endpoint.

Tokens de acceso granulares para "Update organization pattern configurations"

Este punto de conexión funciona con los siguientes tipos de token pormenorizados:

El token pormenorizado debe tener el siguiente conjunto de permisos:

  • "Administration" organization permissions (write)

Parámetros para "Update organization pattern configurations"

Encabezados
accept string

Setting to application/vnd.github+json is recommended.

Parámetros de ruta
org string Obligatorio

The organization name. The name is not case sensitive.

Parámetros del cuerpo
pattern_config_version string or null

The version of the entity. This is used to confirm you're updating the current version of the entity and mitigate unintentionally overriding someone else's update.

provider_pattern_settings array of objects

Pattern settings for provider patterns.

token_type string

The ID of the pattern to configure.

push_protection_setting string

Push protection setting to set for the pattern.

Puede ser uno de los siguientes: not-set, disabled, enabled

custom_pattern_settings array of objects

Pattern settings for custom patterns.

token_type string

The ID of the pattern to configure.

custom_pattern_version string or null

The version of the entity. This is used to confirm you're updating the current version of the entity and mitigate unintentionally overriding someone else's update.

push_protection_setting string

Push protection setting to set for the pattern.

Puede ser uno de los siguientes: disabled, enabled

Códigos de estado de respuesta HTTP para "Update organization pattern configurations"

código de estadoDescripción
200

OK

400

Bad Request

403

Forbidden

404

Resource not found

409

Conflict

422

Validation failed, or the endpoint has been spammed.

Ejemplos de código para "Update organization pattern configurations"

Ejemplo de solicitud

patch/orgs/{org}/secret-scanning/pattern-configurations
curl -L \ -X PATCH \ -H "Accept: application/vnd.github+json" \ -H "Authorization: Bearer <YOUR-TOKEN>" \ -H "X-GitHub-Api-Version: 2022-11-28" \ http(s)://HOSTNAME/api/v3/orgs/ORG/secret-scanning/pattern-configurations \ -d '{"pattern_config_version":"0ujsswThIGTUYm2K8FjOOfXtY1K","provider_pattern_settings":[{"token_type":"GITHUB_PERSONAL_ACCESS_TOKEN","push_protection_setting":"enabled"}],"custom_pattern_settings":[{"token_type":"cp_2","custom_pattern_version":"0ujsswThIGTUYm2K8FjOOfXtY1K","push_protection_setting":"enabled"}]}'

Response

Status: 200
{ "pattern_config_version": "0ujsswThIGTUYm2K8FjOOfXtY1K" }