{ "name": "SetDefaultGithubActionsPermissions", "fully_qualified_name": "GithubApi.SetDefaultGithubActionsPermissions@0.1.0", "description": "Configure default GitHub Actions permissions for an organization.\n\nThis tool sets the default workflow permissions for the `GITHUB_TOKEN` in an organization and determines if GitHub Actions can submit approving pull request reviews. It's essential to authenticate using an access token with `admin:org` scope, or GitHub Apps must have the `administration` permission. Use it to manage organizational GitHub Actions settings.", "toolkit": { "name": "ArcadeGithubApi", "description": null, "version": "0.1.0" }, "input": { "parameters": [ { "name": "organization_name", "required": true, "description": "The name of the organization. Not case sensitive.", "value_schema": { "val_type": "string", "inner_val_type": null, "enum": null, "properties": null, "inner_properties": null, "description": "The organization name. The name is not case sensitive." }, "inferrable": true, "http_endpoint_parameter_name": "org" }, { "name": "default_github_token_permissions", "required": false, "description": "The default permissions granted to the GITHUB_TOKEN when running workflows. Options are 'read' or 'write'.", "value_schema": { "val_type": "string", "inner_val_type": null, "enum": [ "read", "write" ], "properties": null, "inner_properties": null, "description": "The default workflow permissions granted to the GITHUB_TOKEN when running workflows." }, "inferrable": true, "http_endpoint_parameter_name": "default_workflow_permissions" }, { "name": "allow_actions_to_approve_pull_requests", "required": false, "description": "Allow GitHub Actions to approve pull requests. Enabling this may pose a security risk.", "value_schema": { "val_type": "boolean", "inner_val_type": null, "enum": null, "properties": null, "inner_properties": null, "description": "Whether GitHub Actions can approve pull requests. Enabling this can be a security risk." }, "inferrable": true, "http_endpoint_parameter_name": "can_approve_pull_request_reviews" } ] }, "output": { "description": "Response from the API endpoint 'actions/set-github-actions-default-workflow-permissions-organization'.", "available_modes": [ "value", "error", "null" ], "value_schema": { "val_type": "json", "inner_val_type": null, "enum": null, "properties": null, "inner_properties": null, "description": null } }, "requirements": { "authorization": { "provider_id": "arcade-github", "provider_type": "oauth2", "id": null, "oauth2": null }, "secrets": [ { "key": "GIT_SERVER_URL" } ], "metadata": null }, "deprecation_message": null, "metadata": { "object_type": "api_wrapper_tool", "version": "1.1.0", "description": "Tools that enable LLMs to interact directly with the GitHub API." }, "http_endpoint": { "metadata": { "object_type": "http_endpoint", "version": "1.2.0", "description": "" }, "url": "{git_server_url}/api/v3/orgs/{org}/actions/permissions/workflow", "http_method": "PUT", "headers": {}, "parameters": [ { "name": "org", "tool_parameter_name": "organization_name", "description": "The organization name. The name is not case sensitive.", "value_schema": { "val_type": "string", "inner_val_type": null, "enum": null, "properties": null, "inner_properties": null, "description": "The organization name. The name is not case sensitive." }, "accepted_as": "path", "required": true, "deprecated": false, "default": null, "documentation_urls": [] }, { "name": "can_approve_pull_request_reviews", "tool_parameter_name": "allow_actions_to_approve_pull_requests", "description": "Whether GitHub Actions can approve pull requests. Enabling this can be a security risk.", "value_schema": { "val_type": "boolean", "inner_val_type": null, "enum": null, "properties": null, "inner_properties": null, "description": "Whether GitHub Actions can approve pull requests. Enabling this can be a security risk." }, "accepted_as": "body", "required": false, "deprecated": false, "default": null, "documentation_urls": [] }, { "name": "default_workflow_permissions", "tool_parameter_name": "default_github_token_permissions", "description": "The default workflow permissions granted to the GITHUB_TOKEN when running workflows.", "value_schema": { "val_type": "string", "inner_val_type": null, "enum": [ "read", "write" ], "properties": null, "inner_properties": null, "description": "The default workflow permissions granted to the GITHUB_TOKEN when running workflows." }, "accepted_as": "body", "required": false, "deprecated": false, "default": null, "documentation_urls": [] } ], "documentation_urls": [], "secrets": [ { "arcade_key": "GIT_SERVER_URL", "parameter_name": "git_server_url", "accepted_as": "path", "formatted_value": null, "description": "", "is_auth_token": false }, { "arcade_key": "auth_token", "parameter_name": "Authorization", "accepted_as": "header", "formatted_value": "Bearer {authorization}", "description": "The OAuth token to use for authentication.", "is_auth_token": true } ], "request_body_spec": "{\n \"content\": {\n \"application/json\": {\n \"examples\": {\n \"default\": {\n \"$ref\": \"#/components/examples/actions-default-workflow-permissions\"\n }\n },\n \"schema\": {\n \"properties\": {\n \"can_approve_pull_request_reviews\": {\n \"description\": \"Whether GitHub Actions can approve pull requests. Enabling this can be a security risk.\",\n \"type\": \"boolean\"\n },\n \"default_workflow_permissions\": {\n \"description\": \"The default workflow permissions granted to the GITHUB_TOKEN when running workflows.\",\n \"enum\": [\n \"read\",\n \"write\"\n ],\n \"type\": \"string\"\n }\n },\n \"type\": \"object\"\n }\n }\n },\n \"required\": false\n}", "use_request_body_schema_mode": false, "validate_request_body_schema": false } }