GitHub Community
How to Determine Which Repositories Are Accessed by Third-Party GitHub Apps Using a GitHub Application for Security Survey #145239
Unanswered
tomfeigin
asked this question in
API and Webhooks
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Select Topic Area
Question
Body
Hello GitHub Community,
I am using a GitHub application to conduct a security survey for my organization, and I need to determine which repositories are accessible to third-party GitHub Apps installed in our organization.
While I can list the installations using the List App Installations for an Organization API and view the permissions granted to each installation, I cannot determine if these installations have access to all repositories in the organization or only a selected subset.
I understand that I can list the repositories accessible to an app when I have the installation token, but in this case, I do not have access to the tokens for these third-party applications.
Is there a way to retrieve the list of repositories accessible to each third-party GitHub App installed in our organization, using the GitHub application I’m currently working with, without requiring the installation token?
Thank you for your assistance.
Beta Was this translation helpful? Give feedback.
All reactions