Skip to content

chore: update documentation about IP list #9579

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
sileht wants to merge 3 commits into
base: main
Choose a base branch
from
Open

chore: update documentation about IP list #9579

sileht wants to merge 3 commits into from

Conversation

@sileht
Copy link
Member

@sileht sileht commented Dec 5, 2025

The GitHub automatic IP allow list does not work yet completly even
if GitHub UI show our app.

This change explains what to do.

@sileht
chore: update documentation about IP list
cbb4b94 
The GitHub automatic IP allow list does not work yet completly even
if GitHub UI show our app.

This change explains what to do.

Change-Id: Ia868efa6e184c548cdf4a8c30dbb52c3ab51f36c
Copilot AI review requested due to automatic review settings December 5, 2025 09:55
@mergify mergify bot had a problem deploying to Mergify Merge Protections December 5, 2025 09:55 Failure
@mergify
Copy link
Contributor

mergify bot commented Dec 5, 2025
edited
Loading

Merge Protections

Your pull request matches the following merge protections and will not be merged until they are valid.

🔴 👀 Review Requirements

This rule is failing.
  • any of:
    • #approved-reviews-by >= 2
    • author = dependabot[bot]
    • author = mergify-ci-bot

🟢 🤖 Continuous Integration

Wonderful, this rule succeeded.
  • all of:
    • check-success = build
    • check-success = lint
    • check-success = test
    • any of:
      • check-success = test-broken-links
      • label = ignore-broken-links
    • any of:
      • check-success=Cloudflare Pages
      • -head-repo-full-name~=^Mergifyio/

🟢 Enforce conventional commit

Wonderful, this rule succeeded.

Make sure that we follow https://www.conventionalcommits.org/en/v1.0.0/

  • title ~= ^(fix|feat|docs|style|refactor|perf|test|build|ci|chore|revert)(?:\(.+\))?:

🟢 🔎 Reviews

Wonderful, this rule succeeded.
  • #changes-requested-reviews-by = 0
  • #review-requested = 0
  • #review-threads-unresolved = 0

🟢 📕 PR description

Wonderful, this rule succeeded.
  • body ~= (?ms:.{48,})

Copilot finished reviewing on behalf of sileht December 5, 2025 09:56
Copilot AI reviewed Dec 5, 2025
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR updates the security documentation to clarify the manual setup required for the IP allow list feature with the Mergify GitHub App. While GitHub UI shows the IPs as "Managed by Mergify GitHub App", they still require manual addition by organization administrators for OAuth authentication to work properly.

Key Changes:

  • Added a note explaining the requirement to manually add IP addresses to the GitHub allow list despite them appearing as managed by the Mergify GitHub App

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

jd
jd reviewed Dec 5, 2025
View reviewed changes
@mergify mergify bot had a problem deploying to Mergify Merge Protections December 5, 2025 10:04 Failure
jd
jd reviewed Dec 5, 2025
View reviewed changes
@mergify mergify bot had a problem deploying to Mergify Merge Protections December 5, 2025 10:05 Failure
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@jd jd jd approved these changes

Assignees

No one assigned

Labels

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@sileht @jd