Skip to content

Classic permissions #3

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 6 commits into
base: main
Choose a base branch
from
Open

Classic permissions #3

wants to merge 6 commits into from

Conversation

@indcoder
Copy link

@indcoder indcoder commented Oct 10, 2025

Fixes #2 and adds also FGA token instructions

indcoder and others added 6 commits October 9, 2025 09:57
@indcoder
docs: keep classic token instructions; add recommended fine-grained t…
3ec9d11 
…oken guidance
@indcoder
Update README.md
68fbfbf 
Co-authored-by: Copilot <[email protected]>
@indcoder
Merge pull request #2 from indcoder/docs/fga-and-classic-token-readme
e827564 
docs: keep classic token instructions; add recommended fine‑grained token guidance
@indcoder
docs: update token permissions in README for clarity
a159924 
Signed-off-by: Augustine Correa <[email protected]>
@indcoder
docs: update token permissions in README for clarity
5384763 
Signed-off-by: Augustine Correa <[email protected]>
@indcoder
Merge branch 'classic_permissions' of github.com:indcoder/github-arti…
fd99a4f 
…facts-analyzer into classic_permissions

Signed-off-by: Augustine Correa <[email protected]>
Copilot AI review requested due to automatic review settings October 10, 2025 09:51
Copilot AI reviewed Oct 10, 2025
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR adds comprehensive documentation for GitHub token authentication options, providing both classic and fine-grained token instructions while removing the troubleshooting and roadmap sections.

  • Added detailed instructions for both classic Personal Access Tokens and the recommended Fine-Grained Personal Access Tokens (FGA)
  • Restructured token setup documentation with clearer step-by-step guidance
  • Removed troubleshooting section, roadmap, and footer content to streamline the documentation
Comments suppressed due to low confidence (1)

README.md:1

  • This line contains debugging/development text that should not be in the final README. It appears to be accidentally included content from a development process.
# GitHub Artifacts Storage Analyzer

Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.

README.md
Comment on lines +50 to +57
2. Recommended: Fine‑Grained Personal Access Token (FGA)
1. Go to `GitHub Settings > Developer settings > Personal access tokens > Fine‑grained tokens`
2. Click `Generate new token`
3. Under **Repository access** choose `Selected repositories` (preferred) or `All repositories` only if necessary
4. Under **Repository permissions** set:
- `Actions` = `Read` (analysis only). If you plan to run `--cleanup` to delete artifacts, set `Actions` = `Read & write` for the repositories you will modify
- `Contents` = `Read`
- `Profile` = `Read` (account‑level permission — set under Fine‑Grained token **Profile** permissions; only needed if the tool queries the authenticated user's profile)
Copy link

Copilot AI Oct 10, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The hyphen character should be a standard hyphen instead of an en dash for consistency with the rest of the documentation.

Suggested change
2. Recommended: FineGrained Personal Access Token (FGA)
1. Go to `GitHub Settings > Developer settings > Personal access tokens > Finegrained tokens`
2. Click `Generate new token`
3. Under **Repository access** choose `Selected repositories` (preferred) or `All repositories` only if necessary
4. Under **Repository permissions** set:
- `Actions` = `Read` (analysis only). If you plan to run `--cleanup` to delete artifacts, set `Actions` = `Read & write` for the repositories you will modify
- `Contents` = `Read`
- `Profile` = `Read` (accountlevel permission — set under FineGrained token **Profile** permissions; only needed if the tool queries the authenticated user's profile)
2. Recommended: Fine-Grained Personal Access Token (FGA)
1. Go to `GitHub Settings > Developer settings > Personal access tokens > Fine-grained tokens`
2. Click `Generate new token`
3. Under **Repository access** choose `Selected repositories` (preferred) or `All repositories` only if necessary
4. Under **Repository permissions** set:
- `Actions` = `Read` (analysis only). If you plan to run `--cleanup` to delete artifacts, set `Actions` = `Read & write` for the repositories you will modify
- `Contents` = `Read`
- `Profile` = `Read` (account-level permission — set under Fine-Grained token **Profile** permissions; only needed if the tool queries the authenticated user's profile)

Copilot uses AI. Check for mistakes.
README.md
Comment on lines +50 to +57
2. Recommended: Fine‑Grained Personal Access Token (FGA)
1. Go to `GitHub Settings > Developer settings > Personal access tokens > Fine‑grained tokens`
2. Click `Generate new token`
3. Under **Repository access** choose `Selected repositories` (preferred) or `All repositories` only if necessary
4. Under **Repository permissions** set:
- `Actions` = `Read` (analysis only). If you plan to run `--cleanup` to delete artifacts, set `Actions` = `Read & write` for the repositories you will modify
- `Contents` = `Read`
- `Profile` = `Read` (account‑level permission — set under Fine‑Grained token **Profile** permissions; only needed if the tool queries the authenticated user's profile)
Copy link

Copilot AI Oct 10, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The hyphen character should be a standard hyphen instead of an en dash for consistency.

Suggested change
2. Recommended: FineGrained Personal Access Token (FGA)
1. Go to `GitHub Settings > Developer settings > Personal access tokens > Finegrained tokens`
2. Click `Generate new token`
3. Under **Repository access** choose `Selected repositories` (preferred) or `All repositories` only if necessary
4. Under **Repository permissions** set:
- `Actions` = `Read` (analysis only). If you plan to run `--cleanup` to delete artifacts, set `Actions` = `Read & write` for the repositories you will modify
- `Contents` = `Read`
- `Profile` = `Read` (accountlevel permission — set under FineGrained token **Profile** permissions; only needed if the tool queries the authenticated user's profile)
2. Recommended: Fine-Grained Personal Access Token (FGA)
1. Go to `GitHub Settings > Developer settings > Personal access tokens > Fine-grained tokens`
2. Click `Generate new token`
3. Under **Repository access** choose `Selected repositories` (preferred) or `All repositories` only if necessary
4. Under **Repository permissions** set:
- `Actions` = `Read` (analysis only). If you plan to run `--cleanup` to delete artifacts, set `Actions` = `Read & write` for the repositories you will modify
- `Contents` = `Read`
- `Profile` = `Read` (account-level permission — set under Fine-Grained token **Profile** permissions; only needed if the tool queries the authenticated user's profile)

Copilot uses AI. Check for mistakes.
README.md
4. Under **Repository permissions** set:
- `Actions` = `Read` (analysis only). If you plan to run `--cleanup` to delete artifacts, set `Actions` = `Read & write` for the repositories you will modify
- `Contents` = `Read`
- `Profile` = `Read` (account‑level permission — set under Fine‑Grained token **Profile** permissions; only needed if the tool queries the authenticated user's profile)
Copy link

Copilot AI Oct 10, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Multiple hyphen characters should be standard hyphens instead of en dashes for consistency.

Suggested change
- `Profile` = `Read` (accountlevel permission set under FineGrained token **Profile** permissions; only needed if the tool queries the authenticated user's profile)
- `Profile` = `Read` (account-level permission - set under Fine-Grained token **Profile** permissions; only needed if the tool queries the authenticated user's profile)

Copilot uses AI. Check for mistakes.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Permissions for Classic Github Token does not exist

1 participant

@indcoder