Documentation
¶
Index ¶
- Constants
- type OrganizationId
- type OrganizationName
- type RulesetCondition
- type SecurityLog
- type SecurityLogMapper
- type SecurityLogTable
- func (t *SecurityLogTable) EnrichRow(row *SecurityLog, sourceEnrichmentFields schema.SourceEnrichment) (*SecurityLog, error)
- func (t *SecurityLogTable) GetDescription() string
- func (t *SecurityLogTable) GetSourceMetadata() ([]*table.SourceMetadata[*SecurityLog], error)
- func (t *SecurityLogTable) Identifier() string
Constants ¶
View Source
const SecurityLogTableIdentifier = "github_security_log"
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type OrganizationId ¶
We can have org, and org_id value slice of int64 or int64 - For oauth_authorization.create, user.failed_login we will have slice of int64 > select distinct org from github_security_log +---------------------------------------------------------------+ | org | +---------------------------------------------------------------+ | map[name:turbotio names:<nil>] | | map[name:pro-cloud-49 names:<nil>] | | map[name:turbot names:<nil>] | | map[name:<nil> names:[turbotio turbot pro-cloud-49 do-enter]] | | map[name:<nil> names:<nil>] | | map[name:<nil> names:[]] | +---------------------------------------------------------------+ > select distinct org_id from github_security_log +----------------------------------------------------------+ | org_id | +----------------------------------------------------------+ | map[id:98822760 ids:<nil>] | | map[id:10854165 ids:<nil>] | | map[id:<nil> ids:<nil>] | | map[id:<nil> ids:[]] | | map[id:<nil> ids:[10854165 38865304 98822760 193256578]] | | map[id:38865304 ids:<nil>] | +----------------------------------------------------------+
type OrganizationName ¶
type RulesetCondition ¶
type SecurityLog ¶
type SecurityLog struct {
schema.CommonFields
// Common field for all events
Timestamp *time.Time `json:"timestamp"`
DocumentId *string `json:"document_id"`
Action *string `json:"action"`
// Present in: 1/334 events – actions_cache.delete
ActionsCacheId *string `json:"actions_cache_id,omitempty"`
// Present in: 1/334 events – actions_cache.delete
ActionsCacheKey *string `json:"actions_cache_key,omitempty"`
// Present in: 1/334 events – actions_cache.delete
ActionsCacheScope *string `json:"actions_cache_scope,omitempty"`
// Present in: 1/334 events – actions_cache.delete
ActionsCacheVersion *string `json:"actions_cache_version,omitempty"`
// Present in: 2/334 events – hook.active_changed, sponsors.sponsor_sponsorship_payment_complete
Active *string `json:"active,omitempty"`
// Present in: 1/334 events – hook.active_changed
ActiveWas *string `json:"active_was,omitempty"`
// Present in: 324/334 events – account.plan_change, actions_cache.delete, artifact.destroy, billing.change_billing_type, billing.change_email, business.security_center_export_code_scanning_metrics, business.security_center_export_coverage, business.security_center_export_overview_dashboard, business.security_center_export_risk, business.set_actions_fork_pr_approvals_policy, business.set_actions_private_fork_pr_approvals_policy, business.set_actions_retention_limit, business.set_default_workflow_permissions, business.set_fork_pr_workflows_policy, business.set_workflow_permission_can_approve_pr, checks.auto_trigger_disabled, checks.auto_trigger_enabled, checks.delete_logs, codespaces.allow_permissions, codespaces.connect, codespaces.create, codespaces.destroy, codespaces.export_environment, codespaces.restore, codespaces.start_environment, codespaces.suspend_environment, codespaces.trusted_repositories_access_update, copilot.cfb_seat_added, copilot.cfb_seat_assignment_created, copilot.cfb_seat_assignment_refreshed, copilot.cfb_seat_assignment_reused, copilot.cfb_seat_assignment_unassigned, copilot.cfb_seat_cancelled, copilot.cfb_seat_cancelled_by_staff, copilot.swe_agent_repo_disabled, copilot.swe_agent_repo_enabled, copilot.swe_agent_repo_enablement_updated, dependabot_alerts.disable, dependabot_alerts.enable, dependabot_alerts_new_repos.disable, dependabot_alerts_new_repos.enable, dependabot_repository_access.repositories_updated, dependabot_security_updates.disable, dependabot_security_updates.enable, dependabot_security_updates_new_repos.disable, dependabot_security_updates_new_repos.enable, dependency_graph.disable, dependency_graph.enable, dependency_graph_new_repos.disable, dependency_graph_new_repos.enable, environment.add_protection_rule, environment.create_actions_secret, environment.create_actions_variable, environment.delete, environment.remove_actions_secret, environment.remove_actions_variable, environment.remove_protection_rule, environment.update_actions_secret, environment.update_actions_variable, environment.update_protection_rule, gist.create, gist.destroy, gist.visibility_change, git_signing_ssh_public_key.create, git_signing_ssh_public_key.delete, hook.active_changed, hook.config_changed, hook.create, hook.destroy, hook.events_changed, integration.create, integration.destroy, integration.manager_added, integration.manager_removed, integration.remove_client_secret, integration.revoke_all_tokens, integration.revoke_tokens, integration.suspend, integration.transfer, integration.unsuspend, integration_installation.destroy, integration_installation.repositories_added, integration_installation.repositories_removed, integration_installation.version_updated, marketplace_agreement_signature.create, marketplace_listing.approve, marketplace_listing.change_category, marketplace_listing.create, marketplace_listing.delist, marketplace_listing.redraft, marketplace_listing.reject, migration.create, oauth_access.create, oauth_access.destroy, oauth_access.regenerate, oauth_access.update, oauth_application.create, oauth_application.destroy, oauth_application.generate_client_secret, oauth_application.remove_client_secret, oauth_application.reset_secret, oauth_application.revoke_all_tokens, oauth_application.revoke_tokens, oauth_application.transfer, oauth_authorization.create, oauth_authorization.destroy, oauth_authorization.update, org.add_member, org.add_outside_collaborator, org.advanced_security_disabled_for_new_repos, org.advanced_security_disabled_on_all_repos, org.advanced_security_enabled_for_new_repos, org.advanced_security_enabled_on_all_repos, org.remove_member, org.security_center_export_code_scanning_metrics, org.security_center_export_coverage, org.security_center_export_overview_dashboard, org.security_center_export_risk, org.set_actions_fork_pr_approvals_policy, org.set_actions_private_fork_pr_approvals_policy, org.set_actions_retention_limit, org.set_default_workflow_permissions, org.set_fork_pr_workflows_policy, org.set_workflow_permission_can_approve_pr, checks.auto_trigger_disabled, checks.auto_trigger_enabled, checks.delete_logs, codespaces.allow_permissions, codespaces.connect, codespaces.create, codespaces.destroy, codespaces.export_environment, codespaces.restore, codespaces.start_environment, codespaces.suspend_environment, codespaces.trusted_repositories_access_update, copilot.cfb_seat_added, copilot.cfb_seat_assignment_created, copilot.cfb_seat_assignment_refreshed, copilot.cfb_seat_assignment_reused, copilot.cfb_seat_assignment_unassigned, copilot.cfb_seat_cancelled, copilot.cfb_seat_cancelled_by_staff, copilot.swe_agent_repo_disabled, copilot.swe_agent_repo_enabled, copilot.swe_agent_repo_enablement_updated, dependabot_alerts.disable, dependabot_alerts.enable, dependabot_alerts_new_repos.disable, dependabot_alerts_new_repos.enable, dependabot_repository_access.repositories_updated, dependabot_security_updates.disable, dependabot_security_updates.enable, dependabot_security_updates_new_repos.disable, dependabot_security_updates_new_repos.enable, dependency_graph.disable, dependency_graph.enable, dependency_graph_new_repos.disable, dependency_graph_new_repos.enable, environment.add_protection_rule, environment.create_actions_secret, environment.create_actions_variable, environment.delete, environment.remove_actions_secret, environment.remove_actions_variable, environment.remove_protection_rule, environment.update_actions_secret, environment.update_actions_variable, environment.update_protection_rule, gist.create, gist.destroy, gist.visibility_change, git_signing_ssh_public_key.create, git_signing_ssh_public_key.delete, hook.active_changed, hook.config_changed, hook.create, hook.destroy, hook.events_changed, integration.create, integration.destroy, integration.manager_added, integration.manager_removed, integration.remove_client_secret, integration.revoke_all_tokens, integration.revoke_tokens, integration.suspend, integration.transfer, integration.unsuspend, integration_installation.destroy, integration_installation.repositories_added, integration_installation.repositories_removed, integration_installation.suspend, integration_installation.unsuspend, integration_installation.version_updated, marketplace_agreement_signature.create, marketplace_listing.approve, marketplace_listing.change_category, marketplace_listing.create, marketplace_listing.delist, marketplace_listing.redraft, marketplace_listing.reject, migration.create, oauth_access.create, oauth_access.destroy, oauth_access.regenerate, oauth_access.update, oauth_application.create, oauth_application.destroy, oauth_application.generate_client_secret, oauth_application.remove_client_secret, oauth_application.reset_secret, oauth_application.revoke_all_tokens, oauth_application.revoke_tokens, oauth_application.transfer, oauth_authorization.create, oauth_authorization.destroy, oauth_authorization.update, org.add_member, org.add_outside_collaborator, org.advanced_security_disabled_for_new_repos, org.advanced_security_disabled_on_all_repos, org.advanced_security_enabled_for_new_repos, org.advanced_security_enabled_on_all_repos, org.remove_member, org.security_center_export_code_scanning_metrics, org.security_center_export_coverage, org.security_center_export_overview_dashboard, org.security_center_export_risk, org.set_actions_fork_pr_approvals_policy, org.set_actions_private_fork_pr_approvals_policy, org.set_actions_retention_limit, org.set_default_workflow_permissions, org.set_fork_pr_workflows_policy, org.set_workflow_permission_can_approve_pr, org.update_member, org.update_member_repository_creation_permission, org.update_member_repository_invitation_permission, pages_protected_domain.create, pages_protected_domain.delete, pages_protected_domain.verify, passkey.register, passkey.remove, payment_method.create, payment_method.remove, payment_method.update, personal_access_token.access_granted, personal_access_token.access_revoked, personal_access_token.create, personal_access_token.credential_regenerated, personal_access_token.destroy, personal_access_token.request_cancelled, personal_access_token.request_created, personal_access_token.request_denied, personal_access_token.update, profile_picture.update, project.access, project.close, project.create, project.delete, project.link, project.open, project.rename, project.unlink, project.update_org_permission, project.update_team_permission, project.update_user_permission, project.visibility_private, project.visibility_public, project_collaborator.add, project_collaborator.remove, project_collaborator.update, project_field.create, project_field.delete, project_view.create, project_view.delete, protected_branch.update_merge_queue_enforcement_level, public_key.create, public_key.delete, public_key.unverify, public_key.update, public_key.verification_failure, public_key.verify, repo.access, repo.actions_enabled, repo.add_member, repo.add_topic, repo.advanced_security_disabled, repo.advanced_security_enabled, repo.archived, repo.change_merge_setting, repo.code_scanning_analysis_deleted, repo.code_scanning_configuration_for_branch_deleted, repo.config.disable_collaborators_only, repo.config.disable_contributors_only, repo.config.disable_sockpuppet_disallowed, repo.config.enable_collaborators_only, repo.config.enable_contributors_only, repo.config.enable_sockpuppet_disallowed, repo.create, repo.create_actions_secret, repo.create_actions_variable, repo.create_integration_secret, repo.destroy, repo.pages_cname, repo.pages_create, repo.pages_destroy, repo.pages_https_redirect_disabled, repo.pages_https_redirect_enabled, repo.pages_private, repo.pages_public, repo.pages_soft_delete_restore, repo.pages_source, repo.register_self_hosted_runner, repo.remove_actions_secret, repo.remove_actions_variable, repo.remove_integration_secret, repo.remove_member, repo.remove_self_hosted_runner, repo.remove_topic, repo.rename, repo.set_actions_fork_pr_approvals_policy, repo.set_actions_private_fork_pr_approvals_policy, repo.set_actions_retention_limit, repo.set_default_workflow_permissions, repo.set_fork_pr_workflows_policy, repo.set_workflow_permission_can_approve_pr, repo.staff_unlock, repo.temporary_access_granted, repo.transfer, repo.transfer_outgoing, repo.transfer_start, repo.unarchived, repo.update_actions_access_settings, repo.update_actions_secret, repo.update_actions_settings, repo.update_actions_variable, repo.update_default_branch, repo.update_integration_secret, repo.update_member, repository_image.create, repository_image.destroy, repository_invitation.accept, repository_invitation.cancel, repository_invitation.create, repository_invitation.reject, repository_ruleset.create, repository_ruleset.destroy, repository_ruleset.update, security_key.register, security_key.remove, sponsors.agreement_sign, sponsors.custom_amount_settings_change, sponsors.fiscal_host_change, sponsors.repo_funding_links_file_action, sponsors.sponsor_sponsorship_cancel, sponsors.sponsor_sponsorship_create, sponsors.sponsor_sponsorship_payment_complete, sponsors.sponsor_sponsorship_preference_change, sponsors.sponsor_sponsorship_tier_change, sponsors.sponsored_developer_approve, sponsors.sponsored_developer_create, sponsors.sponsored_developer_disable, sponsors.sponsored_developer_profile_update, sponsors.sponsored_developer_redraft, sponsors.sponsored_developer_request_approval, sponsors.sponsored_developer_tier_description_update, sponsors.sponsored_developer_update_newsletter_send, sponsors.sponsors_patreon_user_create, sponsors.sponsors_patreon_user_destroy, sponsors.update_tier_repository, sponsors.update_tier_welcome_message, sponsors.waitlist_join, sponsors.withdraw_agreement_signature, successor_invitation.accept, successor_invitation.cancel, successor_invitation.create, successor_invitation.decline, successor_invitation.revoke, trusted_device.register, trusted_device.remove, two_factor_authentication.add_factor, two_factor_authentication.disabled, two_factor_authentication.enabled, two_factor_authentication.recovery_codes_regenerated, two_factor_authentication.remove_factor, two_factor_authentication.update_fallback, user.add_email, user.async_delete, user.audit_log_export, user.block_user, user.change_password, user.codespaces_trusted_repo_access_granted, user.codespaces_trusted_repo_access_revoked, user.create, user.create_integration_secret, user.creation_rate_limit_exceeded, user.delete, user.demote, user.destroy, user.failed_login, user.hide_private_contributions_count, user.login, user.logout, user.new_device_used, user.promote, user.recreate, user.remove_email, user.remove_integration_secret, user.rename, user.reset_password, user.show_private_contributions_count, user.sign_in_from_unrecognized_device, user.sign_in_from_unrecognized_device_and_location, user.suspend, user.two_factor_challenge_failure, user.two_factor_challenge_success, user.two_factor_recover, user.two_factor_recovery_codes_downloaded, user.two_factor_recovery_codes_printed, user.two_factor_recovery_codes_viewed, user.two_factor_requested, user.unblock_user, user.unsuspend, user.update_integration_secret, user_email.confirm_claim, user_status.destroy, user_status.update, workflows.approve_workflow_job, workflows.delete_workflow_run, workflows.disable_workflow, workflows.enable_workflow, workflows.pin_workflow, workflows.reject_workflow_job, workflows.unpin_workflow
Actor *string `json:"actor,omitempty"`
// Present in: 326/334 events – account.plan_change, actions_cache.delete, artifact.destroy, billing.change_billing_type, billing.change_email, business.security_center_export_code_scanning_metrics, business.security_center_export_coverage, business.security_center_export_overview_dashboard, business.security_center_export_risk, business.set_actions_fork_pr_approvals_policy, business.set_actions_private_fork_pr_approvals_policy, business.set_actions_retention_limit, business.set_default_workflow_permissions, business.set_fork_pr_workflows_policy, business.set_workflow_permission_can_approve_pr, checks.auto_trigger_disabled, checks.auto_trigger_enabled, checks.delete_logs, codespaces.allow_permissions, codespaces.connect, codespaces.create, codespaces.destroy, codespaces.export_environment, codespaces.restore, codespaces.start_environment, codespaces.suspend_environment, codespaces.trusted_repositories_access_update, copilot.cfb_seat_added, copilot.cfb_seat_assignment_created, copilot.cfb_seat_assignment_refreshed, copilot.cfb_seat_assignment_reused, copilot.cfb_seat_assignment_unassigned, copilot.cfb_seat_cancelled, copilot.cfb_seat_cancelled_by_staff, copilot.swe_agent_repo_disabled, copilot.swe_agent_repo_enabled, copilot.swe_agent_repo_enablement_updated, dependabot_alerts.disable, dependabot_alerts.enable, dependabot_alerts_new_repos.disable, dependabot_alerts_new_repos.enable, dependabot_repository_access.repositories_updated, dependabot_security_updates.disable, dependabot_security_updates.enable, dependabot_security_updates_new_repos.disable, dependabot_security_updates_new_repos.enable, dependency_graph.disable, dependency_graph.enable, dependency_graph_new_repos.disable, dependency_graph_new_repos.enable, environment.add_protection_rule, environment.create_actions_secret, environment.create_actions_variable, environment.delete, environment.remove_actions_secret, environment.remove_actions_variable, environment.remove_protection_rule, environment.update_actions_secret, environment.update_actions_variable, environment.update_protection_rule, gist.create, gist.destroy, gist.visibility_change, git_signing_ssh_public_key.create, git_signing_ssh_public_key.delete, hook.active_changed, hook.config_changed, hook.create, hook.destroy, hook.events_changed, integration.create, integration.destroy, integration.manager_added, integration.manager_removed, integration.remove_client_secret, integration.revoke_all_tokens, integration.revoke_tokens, integration.suspend, integration.transfer, integration.unsuspend, integration_installation.destroy, integration_installation.repositories_added, integration_installation.repositories_removed, integration_installation.suspend, integration_installation.unsuspend, integration_installation.version_updated, marketplace_agreement_signature.create, marketplace_listing.approve, marketplace_listing.change_category, marketplace_listing.create, marketplace_listing.delist, marketplace_listing.redraft, marketplace_listing.reject, migration.create, oauth_access.create, oauth_access.destroy, oauth_access.regenerate, oauth_access.update, oauth_application.create, oauth_application.destroy, oauth_application.generate_client_secret, oauth_application.remove_client_secret, oauth_application.reset_secret, oauth_application.revoke_all_tokens, oauth_application.revoke_tokens, oauth_application.transfer, oauth_authorization.create, oauth_authorization.destroy, oauth_authorization.update, org.add_member, org.add_outside_collaborator, org.advanced_security_disabled_for_new_repos, org.advanced_security_disabled_on_all_repos, org.advanced_security_enabled_for_new_repos, org.advanced_security_enabled_on_all_repos, org.remove_member, org.security_center_export_code_scanning_metrics, org.security_center_export_coverage, org.security_center_export_overview_dashboard, org.security_center_export_risk, org.set_actions_fork_pr_approvals_policy, org.set_actions_private_fork_pr_approvals_policy, org.set_actions_retention_limit, org.set_default_workflow_permissions, org.set_fork_pr_workflows_policy, org.set_workflow_permission_can_approve_pr, org.update_member, org.update_member_repository_creation_permission, org.update_member_repository_invitation_permission, pages_protected_domain.create, pages_protected_domain.delete, pages_protected_domain.verify, passkey.register, passkey.remove, payment_method.create, payment_method.remove, payment_method.update, personal_access_token.access_granted, personal_access_token.access_revoked, personal_access_token.create, personal_access_token.credential_regenerated, personal_access_token.destroy, personal_access_token.request_cancelled, personal_access_token.request_created, personal_access_token.request_denied, personal_access_token.update, profile_picture.update, project.access, project.close, project.create, project.delete, project.link, project.open, project.rename, project.unlink, project.update_org_permission, project.update_team_permission, project.update_user_permission, project.visibility_private, project.visibility_public, project_collaborator.add, project_collaborator.remove, project_collaborator.update, project_field.create, project_field.delete, project_view.create, project_view.delete, protected_branch.update_merge_queue_enforcement_level, public_key.create, public_key.delete, public_key.unverify, public_key.update, public_key.verification_failure, public_key.verify, repo.access, repo.actions_enabled, repo.add_member, repo.add_topic, repo.advanced_security_disabled, repo.advanced_security_enabled, repo.archived, repo.change_merge_setting, repo.code_scanning_analysis_deleted, repo.code_scanning_configuration_for_branch_deleted, repo.config.disable_collaborators_only, repo.config.disable_contributors_only, repo.config.disable_sockpuppet_disallowed, repo.config.enable_collaborators_only, repo.config.enable_contributors_only, repo.config.enable_sockpuppet_disallowed, repo.create, repo.create_actions_secret, repo.create_actions_variable, repo.create_integration_secret, repo.destroy, repo.pages_cname, repo.pages_create, repo.pages_destroy, repo.pages_https_redirect_disabled, repo.pages_https_redirect_enabled, repo.pages_private, repo.pages_public, repo.pages_soft_delete_restore, repo.pages_source, repo.register_self_hosted_runner, repo.remove_actions_secret, repo.remove_actions_variable, repo.remove_integration_secret, repo.remove_member, repo.remove_self_hosted_runner, repo.remove_topic, repo.rename, repo.set_actions_fork_pr_approvals_policy, repo.set_actions_private_fork_pr_approvals_policy, repo.set_actions_retention_limit, repo.set_default_workflow_permissions, repo.set_fork_pr_workflows_policy, repo.set_workflow_permission_can_approve_pr, repo.staff_unlock, repo.temporary_access_granted, repo.transfer, repo.transfer_outgoing, repo.transfer_start, repo.unarchived, repo.update_actions_access_settings, repo.update_actions_secret, repo.update_actions_settings, repo.update_actions_variable, repo.update_default_branch, repo.update_integration_secret, repo.update_member, repository_image.create, repository_image.destroy, repository_invitation.accept, repository_invitation.cancel, repository_invitation.create, repository_invitation.reject, repository_ruleset.create, repository_ruleset.destroy, repository_ruleset.update, security_key.register, security_key.remove, sponsors.agreement_sign, sponsors.custom_amount_settings_change, sponsors.fiscal_host_change, sponsors.repo_funding_links_file_action, sponsors.sponsor_sponsorship_cancel, sponsors.sponsor_sponsorship_create, sponsors.sponsor_sponsorship_payment_complete, sponsors.sponsor_sponsorship_preference_change, sponsors.sponsor_sponsorship_tier_change, sponsors.sponsored_developer_approve, sponsors.sponsored_developer_create, sponsors.sponsored_developer_disable, sponsors.sponsored_developer_profile_update, sponsors.sponsored_developer_redraft, sponsors.sponsored_developer_request_approval, sponsors.sponsored_developer_tier_description_update, sponsors.sponsored_developer_update_newsletter_send, sponsors.sponsors_patreon_user_create, sponsors.sponsors_patreon_user_destroy, sponsors.update_tier_repository, sponsors.update_tier_welcome_message, sponsors.waitlist_join, sponsors.withdraw_agreement_signature, successor_invitation.accept, successor_invitation.cancel, successor_invitation.create, successor_invitation.decline, successor_invitation.revoke, trusted_device.register, trusted_device.remove, two_factor_authentication.add_factor, two_factor_authentication.disabled, two_factor_authentication.enabled, two_factor_authentication.recovery_codes_regenerated, two_factor_authentication.remove_factor, two_factor_authentication.update_fallback, user.add_email, user.async_delete, user.audit_log_export, user.block_user, user.change_password, user.codespaces_trusted_repo_access_granted, user.codespaces_trusted_repo_access_revoked, user.create, user.create_integration_secret, user.creation_rate_limit_exceeded, user.delete, user.demote, user.destroy, user.failed_login, user.hide_private_contributions_count, user.login, user.logout, user.new_device_used, user.promote, user.recreate, user.remove_email, user.remove_integration_secret, user.rename, user.reset_password, user.show_private_contributions_count, user.sign_in_from_unrecognized_device, user.sign_in_from_unrecognized_device_and_location, user.suspend, user.two_factor_challenge_failure, user.two_factor_challenge_success, user.two_factor_recover, user.two_factor_recovery_codes_downloaded, user.two_factor_recovery_codes_printed, user.two_factor_recovery_codes_viewed, user.two_factor_requested, user.unblock_user, user.unsuspend, user.update_integration_secret, user_email.confirm_claim, user_status.destroy, user_status.update, workflows.approve_workflow_job, workflows.delete_workflow_run, workflows.disable_workflow, workflows.enable_workflow, workflows.pin_workflow, workflows.reject_workflow_job, workflows.unpin_workflow
ActorId *int64 `json:"actor_id,omitempty"`
// Present in: 33/334 events – business.security_center_export_code_scanning_metrics, business.security_center_export_coverage, business.security_center_export_overview_dashboard, business.security_center_export_risk, codespaces.connect, codespaces.create, environment.create_actions_variable, environment.delete, integration_installation.repositories_added, integration_installation.repositories_removed, migration.create, oauth_authorization.create, oauth_authorization.destroy, oauth_authorization.update, org.add_member, org.security_center_export_code_scanning_metrics, org.security_center_export_coverage, org.security_center_export_overview_dashboard, org.security_center_export_risk, project_collaborator.add, repo.advanced_security_disabled, repo.advanced_security_enabled, repo.change_merge_setting, repo.create, repo.destroy, repo.update_actions_settings, repo.update_default_branch, repo.update_member, repository_ruleset.update, user_email.confirm_claim, workflows.disable_workflow, workflows.pin_workflow, workflows.unpin_workflow
ActorIsBot *bool `json:"actor_is_bot,omitempty"`
// Present in: 11/334 events – integration.create, integration.revoke_all_tokens, integration.revoke_tokens, integration.suspend, integration.unsuspend, integration_installation.create, integration_installation.destroy, integration_installation.repositories_added, integration_installation.repositories_removed, integration_installation.suspend, integration_installation.version_updated
ApplicationClientId *string `json:"application_client_id,omitempty"`
// Present in: 1/334 events – environment.update_protection_rule
Approvers *string `json:"approvers,omitempty"`
// Present in: 1/334 events – environment.update_protection_rule
ApproversWas *string `json:"approvers_was,omitempty"`
// Present in: 2/334 events – user.block_user, user.unblock_user
BlockedUser *string `json:"blocked_user,omitempty"`
// Present in: 1/334 events – repo.code_scanning_configuration_for_branch_deleted
Branch *string `json:"branch,omitempty"`
// Present in: 50/334 events – business.security_center_export_code_scanning_metrics, business.security_center_export_coverage, business.security_center_export_overview_dashboard, business.security_center_export_risk, business.set_actions_fork_pr_approvals_policy, business.set_actions_private_fork_pr_approvals_policy, business.set_actions_retention_limit, business.set_default_workflow_permissions, business.set_fork_pr_workflows_policy, business.set_workflow_permission_can_approve_pr, codespaces.trusted_repositories_access_update, copilot.cfb_seat_added, copilot.cfb_seat_assignment_refreshed, copilot.cfb_seat_assignment_unassigned, copilot.cfb_seat_cancelled_by_staff, copilot.swe_agent_repo_disabled, environment.create_actions_secret, environment.create_actions_variable, environment.remove_actions_secret, oauth_authorization.create, org.advanced_security_disabled_for_new_repos, org.advanced_security_disabled_on_all_repos, org.advanced_security_enabled_for_new_repos, org.advanced_security_enabled_on_all_repos, org.security_center_export_code_scanning_metrics, org.security_center_export_coverage, org.security_center_export_overview_dashboard, org.security_center_export_risk, org.set_actions_fork_pr_approvals_policy, org.update_member_repository_invitation_permission, project.rename, repo.advanced_security_disabled, repo.advanced_security_enabled, repo.code_scanning_configuration_for_branch_deleted, repo.create, repo.create_actions_variable, repo.remove_actions_variable, repo.remove_member, repo.remove_topic, repo.set_actions_fork_pr_approvals_policy, repo.temporary_access_granted, repo.update_actions_access_settings, repo.update_actions_secret, repo.update_actions_variable, repository_ruleset.create, repository_ruleset.update, user_email.confirm_claim, workflows.approve_workflow_job, workflows.pin_workflow, workflows.unpin_workflow
Business *string `json:"business,omitempty"`
// Present in: 49/334 events – business.security_center_export_code_scanning_metrics, business.security_center_export_coverage, business.security_center_export_overview_dashboard, business.security_center_export_risk, business.set_actions_fork_pr_approvals_policy, business.set_actions_private_fork_pr_approvals_policy, business.set_actions_retention_limit, business.set_default_workflow_permissions, business.set_fork_pr_workflows_policy, business.set_workflow_permission_can_approve_pr, copilot.cfb_seat_added, copilot.cfb_seat_assignment_refreshed, copilot.cfb_seat_assignment_unassigned, copilot.cfb_seat_cancelled_by_staff, copilot.swe_agent_repo_disabled, environment.create_actions_secret, environment.create_actions_variable, environment.remove_actions_secret, oauth_authorization.create, org.advanced_security_disabled_for_new_repos, org.advanced_security_disabled_on_all_repos, org.advanced_security_enabled_for_new_repos, org.advanced_security_enabled_on_all_repos, org.security_center_export_code_scanning_metrics, org.security_center_export_coverage, org.security_center_export_overview_dashboard, org.security_center_export_risk, org.set_actions_fork_pr_approvals_policy, org.update_member_repository_invitation_permission, project.rename, repo.advanced_security_disabled, repo.advanced_security_enabled, repo.code_scanning_configuration_for_branch_deleted, repo.create, repo.create_actions_variable, repo.remove_actions_variable, repo.remove_member, repo.remove_topic, repo.set_actions_fork_pr_approvals_policy, repo.temporary_access_granted, repo.update_actions_access_settings, repo.update_actions_secret, repo.update_actions_variable, repository_ruleset.create, repository_ruleset.update, user_email.confirm_claim, workflows.approve_workflow_job, workflows.pin_workflow, workflows.unpin_workflow
BusinessId *int64 `json:"business_id,omitempty"`
// Present in: 1/334 events – environment.update_protection_rule
CanAdminsBypass *string `json:"can_admins_bypass,omitempty"`
// Present in: 2/334 events – repo.code_scanning_analysis_deleted, repo.code_scanning_configuration_for_branch_deleted
Category *string `json:"category,omitempty"`
// Present in: 1/334 events – repo.pages_cname
Cname *string `json:"cname,omitempty"`
// Present in: 3/334 events – project_collaborator.add, project_collaborator.remove, project_collaborator.update
Collaborator *string `json:"collaborator,omitempty"`
// Present in: 3/334 events – project_collaborator.add, project_collaborator.remove, project_collaborator.update
CollaboratorType *string `json:"collaborator_type,omitempty"`
// Present in: 2/334 events – repository_image.create, repository_image.destroy
ContentType *string `json:"content_type,omitempty"`
// Present in: 333/334 events – account.plan_change, actions_cache.delete, artifact.destroy, billing.change_billing_type, billing.change_email, business.security_center_export_code_scanning_metrics, business.security_center_export_coverage, business.security_center_export_overview_dashboard, business.security_center_export_risk, business.set_actions_fork_pr_approvals_policy, business.set_actions_private_fork_pr_approvals_policy, business.set_actions_retention_limit, business.set_default_workflow_permissions, business.set_fork_pr_workflows_policy, business.set_workflow_permission_can_approve_pr, checks.auto_trigger_disabled, checks.auto_trigger_enabled, checks.delete_logs, codespaces.allow_permissions, codespaces.connect, codespaces.create, codespaces.destroy, codespaces.export_environment, codespaces.restore, codespaces.start_environment, codespaces.suspend_environment, codespaces.trusted_repositories_access_update, copilot.cfb_seat_added, copilot.cfb_seat_assignment_created, copilot.cfb_seat_assignment_refreshed, copilot.cfb_seat_assignment_reused, copilot.cfb_seat_assignment_unassigned, copilot.cfb_seat_cancelled, copilot.cfb_seat_cancelled_by_staff, copilot.swe_agent_repo_disabled, copilot.swe_agent_repo_enabled, copilot.swe_agent_repo_enablement_updated, dependabot_alerts.disable, dependabot_alerts.enable, dependabot_alerts_new_repos.disable, dependabot_alerts_new_repos.enable, dependabot_repository_access.repositories_updated, dependabot_security_updates.disable, dependabot_security_updates.enable, dependabot_security_updates_new_repos.disable, dependabot_security_updates_new_repos.enable, dependency_graph.disable, dependency_graph.enable, dependency_graph_new_repos.disable, dependency_graph_new_repos.enable, environment.add_protection_rule, environment.create_actions_secret, environment.create_actions_variable, environment.delete, environment.remove_actions_secret, environment.remove_actions_variable, environment.remove_protection_rule, environment.update_actions_secret, environment.update_actions_variable, gist.create, gist.destroy, gist.visibility_change, git_signing_ssh_public_key.create, git_signing_ssh_public_key.delete, hook.active_changed, hook.config_changed, hook.create, hook.destroy, hook.events_changed, integration.create, integration.destroy, integration.manager_added, integration.manager_removed, integration.remove_client_secret, integration.revoke_all_tokens, integration.revoke_tokens, integration.suspend, integration.transfer, integration.unsuspend, integration_installation.create, integration_installation.destroy, integration_installation.repositories_added, integration_installation.repositories_removed, integration_installation.suspend, integration_installation.unsuspend, integration_installation.version_updated, marketplace_agreement_signature.create, marketplace_listing.approve, marketplace_listing.change_category, marketplace_listing.create, marketplace_listing.delist, marketplace_listing.redraft, marketplace_listing.reject, migration.create, oauth_access.create, oauth_access.destroy, oauth_access.regenerate, oauth_access.revoke, oauth_access.update, oauth_application.create, oauth_application.destroy, oauth_application.generate_client_secret, oauth_application.remove_client_secret, oauth_application.reset_secret, oauth_application.revoke_all_tokens, oauth_application.revoke_tokens, oauth_application.transfer, oauth_authorization.create, oauth_authorization.destroy, oauth_authorization.update, org.add_member, org.add_outside_collaborator, org.advanced_security_disabled_for_new_repos, org.advanced_security_disabled_on_all_repos, org.advanced_security_enabled_for_new_repos, org.advanced_security_enabled_on_all_repos, org.remove_member, org.security_center_export_code_scanning_metrics, org.security_center_export_coverage, org.security_center_export_overview_dashboard, org.security_center_export_risk, org.set_actions_fork_pr_approvals_policy, org.set_actions_private_fork_pr_approvals_policy, org.set_actions_retention_limit, org.set_default_workflow_permissions, org.set_fork_pr_workflows_policy, org.set_workflow_permission_can_approve_pr, org.update_member, org.update_member_repository_creation_permission, org.update_member_repository_invitation_permission, pages_protected_domain.create, pages_protected_domain.delete, pages_protected_domain.verify, passkey.register, passkey.remove, payment_method.create, payment_method.remove, payment_method.update, personal_access_token.access_granted, personal_access_token.access_revoked, personal_access_token.create, personal_access_token.credential_regenerated, personal_access_token.credential_revoked, personal_access_token.destroy, personal_access_token.request_cancelled, personal_access_token.request_created, personal_access_token.request_denied, personal_access_token.update, profile_picture.update, project.access, project.close, project.create, project.delete, project.link, project.open, project.rename, project.unlink, project.update_org_permission, project.update_team_permission, project.update_user_permission, project.visibility_private, project.visibility_public, project_collaborator.add, project_collaborator.remove, project_collaborator.update, project_field.create, project_field.delete, project_view.create, project_view.delete, protected_branch.update_merge_queue_enforcement_level, public_key.create, public_key.delete, public_key.unverification_failure, public_key.unverify, public_key.update, public_key.verification_failure, public_key.verify, repo.access, repo.actions_enabled, repo.add_member, repo.add_topic, repo.advanced_security_disabled, repo.advanced_security_enabled, repo.archived, repo.change_merge_setting, repo.code_scanning_analysis_deleted, repo.code_scanning_configuration_for_branch_deleted, repo.config.disable_collaborators_only, repo.config.disable_contributors_only, repo.config.disable_sockpuppet_disallowed, repo.config.enable_collaborators_only, repo.config.enable_contributors_only, repo.config.enable_sockpuppet_disallowed, repo.create, repo.create_actions_secret, repo.create_actions_variable, repo.create_integration_secret, repo.destroy, repo.pages_cname, repo.pages_create, repo.pages_destroy, repo.pages_https_redirect_disabled, repo.pages_https_redirect_enabled, repo.pages_private, repo.pages_public, repo.pages_soft_delete, repo.pages_soft_delete_restore, repo.pages_source, repo.register_self_hosted_runner, repo.remove_actions_secret, repo.remove_actions_variable, repo.remove_integration_secret, repo.remove_member, repo.remove_self_hosted_runner, repo.remove_topic, repo.rename, repo.set_actions_fork_pr_approvals_policy, repo.set_actions_private_fork_pr_approvals_policy, repo.set_actions_retention_limit, repo.set_default_workflow_permissions, repo.set_fork_pr_workflows_policy, repo.set_workflow_permission_can_approve_pr, repo.staff_unlock, repo.temporary_access_granted, repo.transfer, repo.transfer_outgoing, repo.transfer_start, repo.unarchived, repo.update_actions_access_settings, repo.update_actions_secret, repo.update_actions_settings, repo.update_actions_variable, repo.update_default_branch, repo.update_integration_secret, repo.update_member, repository_image.create, repository_image.destroy, repository_invitation.accept, repository_invitation.cancel, repository_invitation.create, repository_invitation.reject, repository_ruleset.create, repository_ruleset.destroy, repository_ruleset.update, security_key.register, security_key.remove, sponsors.agreement_sign, sponsors.custom_amount_settings_change, sponsors.fiscal_host_change, sponsors.repo_funding_links_file_action, sponsors.sponsor_sponsorship_cancel, sponsors.sponsor_sponsorship_create, sponsors.sponsor_sponsorship_payment_complete, sponsors.sponsor_sponsorship_preference_change, sponsors.sponsor_sponsorship_tier_change, sponsors.sponsored_developer_approve, sponsors.sponsored_developer_create, sponsors.sponsored_developer_disable, sponsors.sponsored_developer_profile_update, sponsors.sponsored_developer_redraft, sponsors.sponsored_developer_request_approval, sponsors.sponsored_developer_tier_description_update, sponsors.sponsored_developer_update_newsletter_send, sponsors.sponsors_patreon_user_create, sponsors.sponsors_patreon_user_destroy, sponsors.update_tier_repository, sponsors.update_tier_welcome_message, sponsors.waitlist_join, sponsors.withdraw_agreement_signature, successor_invitation.accept, successor_invitation.cancel, successor_invitation.create, successor_invitation.decline, successor_invitation.revoke, trusted_device.register, trusted_device.remove, two_factor_authentication.add_factor, two_factor_authentication.disabled, two_factor_authentication.enabled, two_factor_authentication.password_reset_fallback_sms, two_factor_authentication.recovery_codes_regenerated, two_factor_authentication.remove_factor, two_factor_authentication.sign_in_fallback_sms, two_factor_authentication.update_fallback, user.add_email, user.async_delete, user.audit_log_export, user.block_user, user.change_password, user.codespaces_trusted_repo_access_granted, user.codespaces_trusted_repo_access_revoked, user.create, user.create_integration_secret, user.creation_rate_limit_exceeded, user.delete, user.demote, user.destroy, user.failed_login, user.forgot_password, user.hide_private_contributions_count, user.login, user.logout, user.new_device_used, user.promote, user.recreate, user.remove_email, user.remove_integration_secret, user.rename, user.reset_password, user.show_private_contributions_count, user.sign_in_from_unrecognized_device, user.sign_in_from_unrecognized_device_and_location, user.suspend, user.two_factor_challenge_failure, user.two_factor_challenge_success, user.two_factor_recover, user.two_factor_recovery_codes_downloaded, user.two_factor_recovery_codes_printed, user.two_factor_recovery_codes_viewed, user.two_factor_requested, user.unblock_user, user.unsuspend, user.update_integration_secret, user_email.confirm_claim, user_status.destroy, user_status.update, workflows.approve_workflow_job, workflows.delete_workflow_run, workflows.disable_workflow, workflows.enable_workflow, workflows.pin_workflow, workflows.reject_workflow_job, workflows.unpin_workflow
CreatedAt *time.Time `json:"created_at,omitempty"`
// Present in: 3/334 events – codespaces.connect, codespaces.create, codespaces.start_environment
DevcontainerPath *string `json:"devcontainer_path,omitempty"`
// Present in: 3/334 events – pages_protected_domain.create, pages_protected_domain.delete, pages_protected_domain.verify
Domain *string `json:"domain,omitempty"`
// Present in: 5/334 events – billing.change_email, user.add_email, user.create, user.forgot_password, user.remove_email
Email *string `json:"email,omitempty"`
// Present in: 2/334 events – user_status.destroy, user_status.update
Emoji *string `json:"emoji,omitempty"`
// Present in: 4/334 events – business.security_center_export_code_scanning_metrics, business.security_center_export_overview_dashboard, org.security_center_export_code_scanning_metrics, org.security_center_export_overview_dashboard
EndDate *time.Time `json:"end_date,omitempty"`
// Present in: 3/334 events – environment.create_actions_variable, environment.remove_actions_variable, environment.update_actions_variable
EnvironmentName *string `json:"environment_name,omitempty"`
// Present in: 5/334 events – hook.active_changed, hook.config_changed, hook.create, hook.destroy, hook.events_changed
Events []string `json:"events,omitempty"`
// Present in: 1/334 events – hook.events_changed
EventsWere *string `json:"events_were,omitempty"`
// Present in: 6/334 events – git_signing_ssh_public_key.delete, oauth_access.destroy, oauth_authorization.destroy, personal_access_token.destroy, public_key.delete, public_key.unverify
Explanation *string `json:"explanation,omitempty"`
// Present in: 8/334 events – business.security_center_export_code_scanning_metrics, business.security_center_export_coverage, business.security_center_export_overview_dashboard, business.security_center_export_risk, org.security_center_export_code_scanning_metrics, org.security_center_export_coverage, org.security_center_export_overview_dashboard, org.security_center_export_risk
Filename *string `json:"filename,omitempty"`
// Present in: 9/334 events – git_signing_ssh_public_key.create, git_signing_ssh_public_key.delete, public_key.create, public_key.delete, public_key.unverification_failure, public_key.unverify, public_key.update, public_key.verification_failure, public_key.verify
Fingerprint *string `json:"fingerprint,omitempty"`
// Present in: 3/334 events – gist.create, gist.destroy, gist.visibility_change
GistId *string `json:"gist_id,omitempty"`
// Present in: 4/334 events – copilot.cfb_seat_added, copilot.cfb_seat_assignment_refreshed, oauth_access.destroy, oauth_access.revoke
HashedToken *string `json:"hashed_token,omitempty"`
// Present in: 1/334 events – workflows.delete_workflow_run
HeadBranch *string `json:"head_branch,omitempty"`
// Present in: 1/334 events – workflows.delete_workflow_run
HeadSha *string `json:"head_sha,omitempty"`
// Present in: 5/334 events – hook.active_changed, hook.config_changed, hook.create, hook.destroy, hook.events_changed
HookId *string `json:"hook_id,omitempty"`
// Present in: 26/334 events – integration.create, integration.destroy, integration.manager_added, integration.manager_removed, integration.remove_client_secret, integration.revoke_all_tokens, integration.revoke_tokens, integration.suspend, integration.transfer, integration.unsuspend, integration_installation.create, integration_installation.destroy, integration_installation.repositories_added, integration_installation.repositories_removed, integration_installation.suspend, integration_installation.unsuspend, integration_installation.version_updated, marketplace_listing.approve, marketplace_listing.change_category, marketplace_listing.delist, repo.create_integration_secret, repo.remove_integration_secret, repo.update_integration_secret, user.create_integration_secret, user.remove_integration_secret, user.update_integration_secret
Integration *string `json:"integration,omitempty"`
// Present in: 5/334 events – org.add_outside_collaborator, repository_invitation.accept, repository_invitation.cancel, repository_invitation.create, repository_invitation.reject
Invitee *string `json:"invitee,omitempty"`
// Present in: 5/334 events – org.add_outside_collaborator, repository_invitation.accept, repository_invitation.cancel, repository_invitation.create, repository_invitation.reject
Inviter *string `json:"inviter,omitempty"`
// Present in: 27/334 events – environment.create_actions_secret, environment.create_actions_variable, environment.remove_actions_secret, environment.remove_actions_variable, environment.update_actions_secret, environment.update_actions_variable, git_signing_ssh_public_key.create, git_signing_ssh_public_key.delete, public_key.create, public_key.delete, public_key.unverification_failure, public_key.unverify, public_key.update, public_key.verification_failure, public_key.verify, repo.create_actions_secret, repo.create_actions_variable, repo.create_integration_secret, repo.remove_actions_secret, repo.remove_actions_variable, repo.remove_integration_secret, repo.update_actions_secret, repo.update_actions_variable, repo.update_integration_secret, user.create_integration_secret, user.remove_integration_secret, user.update_integration_secret
Key *string `json:"key,omitempty"`
// Present in: 3/334 events – business.set_actions_retention_limit, org.set_actions_retention_limit, repo.set_actions_retention_limit
Limit *string `json:"limit,omitempty"`
// Present in: 2/334 events – user_status.destroy, user_status.update
LimitedAvailability *string `json:"limited_availability,omitempty"`
// Present in: 3/334 events – codespaces.connect, codespaces.create, codespaces.start_environment
MachineType *string `json:"machine_type,omitempty"`
// Present in: 2/334 events – integration.manager_added, integration.manager_removed
Manager *string `json:"manager,omitempty"`
// Present in: 6/334 events – marketplace_listing.approve, marketplace_listing.change_category, marketplace_listing.create, marketplace_listing.delist, marketplace_listing.redraft, marketplace_listing.reject
MarketplaceListing *string `json:"marketplace_listing,omitempty"`
// Present in: 1/334 events – protected_branch.update_merge_queue_enforcement_level
MergeQueueEnforcementLevel *string `json:"merge_queue_enforcement_level,omitempty"`
// Present in: 2/334 events – user_status.destroy, user_status.update
Message *string `json:"message,omitempty"`
// Present in: 38/334 events – business.set_actions_fork_pr_approvals_policy, business.set_actions_private_fork_pr_approvals_policy, business.set_actions_retention_limit, business.set_default_workflow_permissions, business.set_fork_pr_workflows_policy, business.set_workflow_permission_can_approve_pr, codespaces.connect, codespaces.create, codespaces.destroy, codespaces.start_environment, environment.add_protection_rule, environment.delete, environment.remove_protection_rule, hook.active_changed, hook.config_changed, hook.create, hook.destroy, hook.events_changed, integration.create, integration.destroy, integration.manager_added, integration.manager_removed, integration.remove_client_secret, integration.revoke_all_tokens, integration.revoke_tokens, integration.suspend, integration.transfer, integration.unsuspend, integration_installation.create, integration_installation.destroy, integration_installation.repositories_added, integration_installation.repositories_removed, integration_installation.suspend, integration_installation.unsuspend, integration_installation.version_updated, protected_branch.update_merge_queue_enforcement_level, repository_ruleset.create, repository_ruleset.destroy
Name *string `json:"name,omitempty"`
// Present in: 1/334 events – copilot.swe_agent_repo_enablement_updated
NewAccess *string `json:"new_access,omitempty"`
// Present in: 1/334 events – repo.transfer_outgoing
NewNwo *string `json:"new_nwo,omitempty"`
// Present in: 1/334 events – repo.update_actions_settings
NewPolicy *string `json:"new_policy,omitempty"`
// Present in: 1/334 events – repo.update_member
NewRepoBaseRole *string `json:"new_repo_base_role,omitempty"`
// Present in: 1/334 events – repo.update_member
NewRepoPermission *string `json:"new_repo_permission,omitempty"`
// Present in: 1/334 events – environment.update_protection_rule
NewValue *string `json:"new_value,omitempty"`
// Present in: 2/334 events – passkey.register, passkey.remove
Nickname *string `json:"nickname,omitempty"`
// Present in: 12/334 events – hook.create, marketplace_listing.create, marketplace_listing.redraft, marketplace_listing.reject, oauth_application.create, oauth_application.destroy, oauth_application.generate_client_secret, oauth_application.remove_client_secret, oauth_application.reset_secret, oauth_application.revoke_all_tokens, oauth_application.revoke_tokens, oauth_application.transfer
OauthApplication *string `json:"oauth_application,omitempty"`
// Present in: 34/334 events – actions_cache.delete, codespaces.export_environment, environment.create_actions_secret, environment.remove_actions_secret, environment.update_actions_secret, hook.config_changed, hook.create, hook.destroy, hook.events_changed, marketplace_listing.create, marketplace_listing.redraft, marketplace_listing.reject, oauth_application.create, oauth_application.destroy, oauth_application.generate_client_secret, oauth_application.remove_client_secret, oauth_application.reset_secret, oauth_application.revoke_all_tokens, oauth_application.revoke_tokens, oauth_application.transfer, public_key.verification_failure, repo.add_member, repo.change_merge_setting, repo.code_scanning_analysis_deleted, repo.config.enable_collaborators_only, repo.create, repo.destroy, repo.update_actions_secret, repo.update_member, user.creation_rate_limit_exceeded, user.demote, user.promote, user.suspend, user.unsuspend
OauthApplicationId *string `json:"oauth_application_id,omitempty"`
// Present in: 6/334 events – oauth_access.create, oauth_access.destroy, oauth_access.regenerate, oauth_authorization.create, oauth_authorization.destroy, oauth_authorization.update
OauthApplicationName *string `json:"oauth_application_name,omitempty"`
// Present in: 1/334 events – copilot.swe_agent_repo_enablement_updated
OldAccess *string `json:"old_access,omitempty"`
// Present in: 1/334 events – repo.update_member
OldBaseRole *string `json:"old_base_role,omitempty"`
// Present in: 1/334 events – repo.pages_cname
OldCname *string `json:"old_cname,omitempty"`
// Present in: 1/334 events – user.rename
OldLogin *string `json:"old_login,omitempty"`
// Present in: 3/334 events – project.rename, repo.rename, repository_ruleset.update
OldName *string `json:"old_name,omitempty"`
// Present in: 2/334 events – org.update_member, repo.update_member
OldPermission *string `json:"old_permission,omitempty"`
// Present in: 2/334 events – repo.update_actions_access_settings, repo.update_actions_settings
OldPolicy *string `json:"old_policy,omitempty"`
// Present in: 2/334 events – project_collaborator.add, project_collaborator.update
OldProjectRole *string `json:"old_project_role,omitempty"`
// Present in: 1/334 events – repo.update_member
OldRepoBaseRole *string `json:"old_repo_base_role,omitempty"`
// Present in: 1/334 events – repo.update_member
OldRepoPermission *string `json:"old_repo_permission,omitempty"`
// Present in: 1/334 events – repo.transfer
OldUser *string `json:"old_user,omitempty"`
// Present in: 333/334 events – account.plan_change, actions_cache.delete, artifact.destroy, billing.change_billing_type, billing.change_email, business.security_center_export_code_scanning_metrics, business.security_center_export_coverage, business.security_center_export_overview_dashboard, business.security_center_export_risk, business.set_actions_fork_pr_approvals_policy, business.set_actions_private_fork_pr_approvals_policy, business.set_actions_retention_limit, business.set_default_workflow_permissions, business.set_fork_pr_workflows_policy, business.set_workflow_permission_can_approve_pr, checks.auto_trigger_disabled, checks.auto_trigger_enabled, checks.delete_logs, codespaces.allow_permissions, codespaces.connect, codespaces.create, codespaces.destroy, codespaces.export_environment, codespaces.restore, codespaces.start_environment, codespaces.suspend_environment, codespaces.trusted_repositories_access_update, copilot.cfb_seat_added, copilot.cfb_seat_assignment_created, copilot.cfb_seat_assignment_refreshed, copilot.cfb_seat_assignment_reused, copilot.cfb_seat_assignment_unassigned, copilot.cfb_seat_cancelled, copilot.cfb_seat_cancelled_by_staff, copilot.swe_agent_repo_disabled, copilot.swe_agent_repo_enabled, copilot.swe_agent_repo_enablement_updated, dependabot_alerts.disable, dependabot_alerts.enable, dependabot_alerts_new_repos.disable, dependabot_alerts_new_repos.enable, dependabot_repository_access.repositories_updated, dependabot_security_updates.disable, dependabot_security_updates.enable, dependabot_security_updates_new_repos.disable, dependabot_security_updates_new_repos.enable, dependency_graph.disable, dependency_graph.enable, dependency_graph_new_repos.disable, dependency_graph_new_repos.enable, environment.add_protection_rule, environment.create_actions_secret, environment.create_actions_variable, environment.delete, environment.remove_actions_secret, environment.remove_actions_variable, environment.remove_protection_rule, environment.update_actions_secret, environment.update_actions_variable, gist.create, gist.destroy, gist.visibility_change, git_signing_ssh_public_key.create, git_signing_ssh_public_key.delete, hook.active_changed, hook.config_changed, hook.create, hook.destroy, hook.events_changed, integration.create, integration.destroy, integration.manager_added, integration.manager_removed, integration.remove_client_secret, integration.revoke_all_tokens, integration.revoke_tokens, integration.suspend, integration.transfer, integration.unsuspend, integration_installation.create, integration_installation.destroy, integration_installation.repositories_added, integration_installation.repositories_removed, integration_installation.suspend, integration_installation.unsuspend, integration_installation.version_updated, marketplace_agreement_signature.create, marketplace_listing.approve, marketplace_listing.change_category, marketplace_listing.create, marketplace_listing.delist, marketplace_listing.redraft, marketplace_listing.reject, migration.create, oauth_access.create, oauth_access.destroy, oauth_access.regenerate, oauth_access.revoke, oauth_access.update, oauth_application.create, oauth_application.destroy, oauth_application.generate_client_secret, oauth_application.remove_client_secret, oauth_application.reset_secret, oauth_application.revoke_all_tokens, oauth_application.revoke_tokens, oauth_application.transfer, oauth_authorization.create, oauth_authorization.destroy, oauth_authorization.update, org.add_member, org.add_outside_collaborator, org.advanced_security_disabled_for_new_repos, org.advanced_security_disabled_on_all_repos, org.advanced_security_enabled_for_new_repos, org.advanced_security_enabled_on_all_repos, org.remove_member, org.security_center_export_code_scanning_metrics, org.security_center_export_coverage, org.security_center_export_overview_dashboard, org.security_center_export_risk, org.set_actions_fork_pr_approvals_policy, org.set_actions_private_fork_pr_approvals_policy, org.set_actions_retention_limit, org.set_default_workflow_permissions, org.set_fork_pr_workflows_policy, org.set_workflow_permission_can_approve_pr, org.update_member, org.update_member_repository_creation_permission, org.update_member_repository_invitation_permission, pages_protected_domain.create, pages_protected_domain.delete, pages_protected_domain.verify, passkey.register, passkey.remove, payment_method.create, payment_method.remove, payment_method.update, personal_access_token.access_granted, personal_access_token.access_revoked, personal_access_token.create, personal_access_token.credential_regenerated, personal_access_token.credential_revoked, personal_access_token.destroy, personal_access_token.request_cancelled, personal_access_token.request_created, personal_access_token.request_denied, personal_access_token.update, profile_picture.update, project.access, project.close, project.create, project.delete, project.link, project.open, project.rename, project.unlink, project.update_org_permission, project.update_team_permission, project.update_user_permission, project.visibility_private, project.visibility_public, project_collaborator.add, project_collaborator.remove, project_collaborator.update, project_field.create, project_field.delete, project_view.create, project_view.delete, protected_branch.update_merge_queue_enforcement_level, public_key.create, public_key.delete, public_key.unverification_failure, public_key.unverify, public_key.update, public_key.verification_failure, public_key.verify, repo.access, repo.actions_enabled, repo.add_member, repo.add_topic, repo.advanced_security_disabled, repo.advanced_security_enabled, repo.archived, repo.change_merge_setting, repo.code_scanning_analysis_deleted, repo.code_scanning_configuration_for_branch_deleted, repo.config.disable_collaborators_only, repo.config.disable_contributors_only, repo.config.disable_sockpuppet_disallowed, repo.config.enable_collaborators_only, repo.config.enable_contributors_only, repo.config.enable_sockpuppet_disallowed, repo.create, repo.create_actions_secret, repo.create_actions_variable, repo.create_integration_secret, repo.destroy, repo.pages_cname, repo.pages_create, repo.pages_destroy, repo.pages_https_redirect_disabled, repo.pages_https_redirect_enabled, repo.pages_private, repo.pages_public, repo.pages_soft_delete, repo.pages_soft_delete_restore, repo.pages_source, repo.register_self_hosted_runner, repo.remove_actions_secret, repo.remove_actions_variable, repo.remove_integration_secret, repo.remove_member, repo.remove_self_hosted_runner, repo.remove_topic, repo.rename, repo.set_actions_fork_pr_approvals_policy, repo.set_actions_private_fork_pr_approvals_policy, repo.set_actions_retention_limit, repo.set_default_workflow_permissions, repo.set_fork_pr_workflows_policy, repo.set_workflow_permission_can_approve_pr, repo.staff_unlock, repo.temporary_access_granted, repo.transfer, repo.transfer_outgoing, repo.transfer_start, repo.unarchived, repo.update_actions_access_settings, repo.update_actions_secret, repo.update_actions_settings, repo.update_actions_variable, repo.update_default_branch, repo.update_integration_secret, repo.update_member, repository_image.create, repository_image.destroy, repository_invitation.accept, repository_invitation.cancel, repository_invitation.create, repository_invitation.reject, repository_ruleset.create, repository_ruleset.destroy, repository_ruleset.update, security_key.register, security_key.remove, sponsors.agreement_sign, sponsors.custom_amount_settings_change, sponsors.fiscal_host_change, sponsors.repo_funding_links_file_action, sponsors.sponsor_sponsorship_cancel, sponsors.sponsor_sponsorship_create, sponsors.sponsor_sponsorship_payment_complete, sponsors.sponsor_sponsorship_preference_change, sponsors.sponsor_sponsorship_tier_change, sponsors.sponsored_developer_approve, sponsors.sponsored_developer_create, sponsors.sponsored_developer_disable, sponsors.sponsored_developer_profile_update, sponsors.sponsored_developer_redraft, sponsors.sponsored_developer_request_approval, sponsors.sponsored_developer_tier_description_update, sponsors.sponsored_developer_update_newsletter_send, sponsors.sponsors_patreon_user_create, sponsors.sponsors_patreon_user_destroy, sponsors.update_tier_repository, sponsors.update_tier_welcome_message, sponsors.waitlist_join, sponsors.withdraw_agreement_signature, successor_invitation.accept, successor_invitation.cancel, successor_invitation.create, successor_invitation.decline, successor_invitation.revoke, trusted_device.register, trusted_device.remove, two_factor_authentication.add_factor, two_factor_authentication.disabled, two_factor_authentication.enabled, two_factor_authentication.password_reset_fallback_sms, two_factor_authentication.recovery_codes_regenerated, two_factor_authentication.remove_factor, two_factor_authentication.sign_in_fallback_sms, two_factor_authentication.update_fallback, user.add_email, user.async_delete, user.audit_log_export, user.block_user, user.change_password, user.codespaces_trusted_repo_access_granted, user.codespaces_trusted_repo_access_revoked, user.create, user.create_integration_secret, user.creation_rate_limit_exceeded, user.delete, user.demote, user.destroy, user.failed_login, user.forgot_password, user.hide_private_contributions_count, user.login, user.logout, user.new_device_used, user.promote, user.recreate, user.remove_email, user.remove_integration_secret, user.rename, user.reset_password, user.show_private_contributions_count, user.sign_in_from_unrecognized_device, user.sign_in_from_unrecognized_device_and_location, user.suspend, user.two_factor_challenge_failure, user.two_factor_challenge_success, user.two_factor_recover, user.two_factor_recovery_codes_downloaded, user.two_factor_recovery_codes_printed, user.two_factor_recovery_codes_viewed, user.two_factor_requested, user.unblock_user, user.unsuspend, user.update_integration_secret, user_email.confirm_claim, user_status.destroy, user_status.update, workflows.approve_workflow_job, workflows.delete_workflow_run, workflows.disable_workflow, workflows.enable_workflow, workflows.pin_workflow, workflows.reject_workflow_job, workflows.unpin_workflow
OperationType *string `json:"operation_type,omitempty"`
// Present in: 119/334 events – actions_cache.delete, billing.change_email, codespaces.start_environment, codespaces.trusted_repositories_access_update, copilot.cfb_seat_assignment_refreshed, copilot.cfb_seat_assignment_reused, copilot.cfb_seat_assignment_unassigned, copilot.cfb_seat_cancelled_by_staff, copilot.swe_agent_repo_disabled, copilot.swe_agent_repo_enabled, copilot.swe_agent_repo_enablement_updated, dependabot_alerts.disable, dependabot_alerts.enable, dependabot_alerts_new_repos.disable, dependabot_alerts_new_repos.enable, dependabot_repository_access.repositories_updated, dependabot_security_updates.disable, dependabot_security_updates.enable, dependabot_security_updates_new_repos.disable, dependabot_security_updates_new_repos.enable, dependency_graph.disable, dependency_graph.enable, dependency_graph_new_repos.disable, dependency_graph_new_repos.enable, environment.add_protection_rule, environment.create_actions_secret, environment.create_actions_variable, environment.delete, environment.remove_actions_secret, environment.remove_protection_rule, environment.update_actions_secret, environment.update_protection_rule, hook.active_changed, hook.config_changed, hook.create, hook.destroy, hook.events_changed, integration.manager_added, integration.manager_removed, marketplace_listing.change_category, marketplace_listing.delist, migration.create, oauth_application.create, org.add_member, org.add_outside_collaborator, org.advanced_security_disabled_for_new_repos, org.advanced_security_disabled_on_all_repos, org.advanced_security_enabled_for_new_repos, org.advanced_security_enabled_on_all_repos, org.remove_member, org.security_center_export_code_scanning_metrics, org.security_center_export_coverage, org.security_center_export_overview_dashboard, org.security_center_export_risk, org.set_actions_fork_pr_approvals_policy, org.set_actions_private_fork_pr_approvals_policy, org.set_actions_retention_limit, org.set_default_workflow_permissions, org.set_fork_pr_workflows_policy, org.set_workflow_permission_can_approve_pr, org.update_member, org.update_member_repository_creation_permission, org.update_member_repository_invitation_permission, payment_method.update, personal_access_token.request_cancelled, personal_access_token.request_denied, project.close, project.link, project.rename, project.unlink, project.update_org_permission, project.update_team_permission, project.update_user_permission, project.visibility_private, project.visibility_public, project_collaborator.add, project_field.create, project_field.delete, project_view.create, project_view.delete, repo.actions_enabled, repo.add_member, repo.add_topic, repo.advanced_security_disabled, repo.advanced_security_enabled, repo.code_scanning_analysis_deleted, repo.code_scanning_configuration_for_branch_deleted, repo.config.enable_contributors_only, repo.create, repo.create_actions_variable, repo.pages_private, repo.pages_public, repo.pages_soft_delete, repo.pages_soft_delete_restore, repo.remove_actions_secret, repo.remove_actions_variable, repo.remove_integration_secret, repo.remove_member, repo.remove_self_hosted_runner, repo.remove_topic, repo.set_actions_fork_pr_approvals_policy, repo.set_actions_private_fork_pr_approvals_policy, repo.staff_unlock, repo.transfer_outgoing, repo.update_actions_access_settings, repo.update_actions_secret, repo.update_actions_settings, repo.update_actions_variable, repo.update_integration_secret, repo.update_member, repository_ruleset.create, repository_ruleset.destroy, repository_ruleset.update, sponsors.custom_amount_settings_change, sponsors.fiscal_host_change, user_status.destroy, user_status.update, workflows.pin_workflow, workflows.unpin_workflow
Org OrganizationName `json:"org,omitempty"`
// Present in: 121/334 events – actions_cache.delete, billing.change_email, codespaces.connect, codespaces.trusted_repositories_access_update, copilot.cfb_seat_assignment_refreshed, copilot.cfb_seat_assignment_reused, copilot.cfb_seat_assignment_unassigned, copilot.cfb_seat_cancelled_by_staff, copilot.swe_agent_repo_disabled, copilot.swe_agent_repo_enabled, copilot.swe_agent_repo_enablement_updated, dependabot_alerts.disable, dependabot_alerts.enable, dependabot_alerts_new_repos.disable, dependabot_alerts_new_repos.enable, dependabot_repository_access.repositories_updated, dependabot_security_updates.disable, dependabot_security_updates.enable, dependabot_security_updates_new_repos.disable, dependabot_security_updates_new_repos.enable, dependency_graph.disable, dependency_graph.enable, dependency_graph_new_repos.disable, dependency_graph_new_repos.enable, environment.add_protection_rule, environment.create_actions_secret, environment.create_actions_variable, environment.delete, environment.remove_actions_secret, environment.remove_protection_rule, environment.update_actions_secret, environment.update_protection_rule, hook.active_changed, hook.config_changed, hook.create, hook.destroy, hook.events_changed, integration.manager_added, integration.manager_removed, marketplace_listing.change_category, marketplace_listing.delist, migration.create, oauth_application.create, oauth_authorization.create, oauth_authorization.destroy, oauth_authorization.update, org.add_member, org.add_outside_collaborator, org.advanced_security_disabled_for_new_repos, org.advanced_security_disabled_on_all_repos, org.advanced_security_enabled_for_new_repos, org.advanced_security_enabled_on_all_repos, org.remove_member, org.security_center_export_code_scanning_metrics, org.security_center_export_coverage, org.security_center_export_overview_dashboard, org.security_center_export_risk, org.set_actions_fork_pr_approvals_policy, org.set_actions_private_fork_pr_approvals_policy, org.set_actions_retention_limit, org.set_default_workflow_permissions, org.set_fork_pr_workflows_policy, org.set_workflow_permission_can_approve_pr, org.update_member, org.update_member_repository_creation_permission, org.update_member_repository_invitation_permission, payment_method.update, personal_access_token.request_cancelled, personal_access_token.request_denied, project.close, project.link, project.rename, project.unlink, project.update_org_permission, project.update_team_permission, project.update_user_permission, project.visibility_private, project.visibility_public, project_collaborator.add, project_field.create, project_field.delete, project_view.create, project_view.delete, repo.actions_enabled, repo.add_member, repo.add_topic, repo.advanced_security_disabled, repo.advanced_security_enabled, repo.code_scanning_analysis_deleted, repo.code_scanning_configuration_for_branch_deleted, repo.config.enable_contributors_only, repo.create, repo.create_actions_variable, repo.pages_private, repo.pages_public, repo.pages_soft_delete, repo.pages_soft_delete_restore, repo.remove_actions_secret, repo.remove_actions_variable, repo.remove_integration_secret, repo.remove_member, repo.remove_self_hosted_runner, repo.remove_topic, repo.set_actions_fork_pr_approvals_policy, repo.set_actions_private_fork_pr_approvals_policy, repo.staff_unlock, repo.transfer_outgoing, repo.update_actions_access_settings, repo.update_actions_secret, repo.update_actions_settings, repo.update_actions_variable, repo.update_integration_secret, repo.update_member, repository_ruleset.create, repository_ruleset.destroy, repository_ruleset.update, sponsors.custom_amount_settings_change, sponsors.fiscal_host_change, user.failed_login, workflows.pin_workflow, workflows.unpin_workflow
OrgId OrganizationId `json:"org_id,omitempty"`
// Present in: 1/334 events – codespaces.allow_permissions
OriginRepository *string `json:"origin_repository,omitempty"`
// Present in: 15/334 events – codespaces.connect, codespaces.create, codespaces.destroy, codespaces.export_environment, codespaces.restore, codespaces.start_environment, codespaces.suspend_environment, copilot.swe_agent_repo_disabled, copilot.swe_agent_repo_enabled, copilot.swe_agent_repo_enablement_updated, pages_protected_domain.create, pages_protected_domain.delete, pages_protected_domain.verify, profile_picture.update, repo.transfer
Owner *string `json:"owner,omitempty"`
// Present in: 6/334 events – copilot.swe_agent_repo_disabled, copilot.swe_agent_repo_enabled, copilot.swe_agent_repo_enablement_updated, pages_protected_domain.create, pages_protected_domain.delete, pages_protected_domain.verify
OwnerType *string `json:"owner_type,omitempty"`
// Present in: 1/334 events – user.login
PasskeyNickname *string `json:"passkey_nickname,omitempty"`
// Present in: 2/334 events – sponsors.sponsors_patreon_user_create, sponsors.sponsors_patreon_user_destroy
PatreonEmail *string `json:"patreon_email,omitempty"`
// Present in: 2/334 events – sponsors.sponsors_patreon_user_create, sponsors.sponsors_patreon_user_destroy
PatreonUsername *string `json:"patreon_username,omitempty"`
// Present in: 5/334 events – org.add_member, org.add_outside_collaborator, org.update_member, org.update_member_repository_creation_permission, org.update_member_repository_invitation_permission
Permissions map[string]string `json:"permissions,omitempty"`
// Present in: 1/334 events – personal_access_token.request_created
PermissionsAdded map[string]string `json:"permissions_added,omitempty"`
PermissionsUnchanged map[string]string `json:"permissions_unchanged,omitempty"`
PermissionsUpgraded map[string]string `json:"permissions_upgraded,omitempty"`
// Present in: 10/334 events – business.set_actions_fork_pr_approvals_policy, business.set_actions_private_fork_pr_approvals_policy, business.set_fork_pr_workflows_policy, org.set_actions_fork_pr_approvals_policy, org.set_actions_private_fork_pr_approvals_policy, org.set_fork_pr_workflows_policy, repo.set_actions_fork_pr_approvals_policy, repo.set_actions_private_fork_pr_approvals_policy, repo.set_fork_pr_workflows_policy, repo.update_actions_access_settings
Policy *string `json:"policy,omitempty"`
// Present in: 1/334 events – environment.update_protection_rule
PreventSelfReview *string `json:"prevent_self_review,omitempty"`
// Present in: 1/334 events – repo.access
PreviousVisibility *string `json:"previous_visibility,omitempty"`
// Present in: 6/334 events – marketplace_listing.approve, marketplace_listing.change_category, marketplace_listing.create, marketplace_listing.delist, marketplace_listing.redraft, marketplace_listing.reject
PrimaryCategory *string `json:"primary_category,omitempty"`
// Present in: 87/334 events – account.plan_change, actions_cache.delete, artifact.destroy, checks.delete_logs, codespaces.connect, codespaces.create, codespaces.destroy, codespaces.suspend_environment, copilot.cfb_seat_added, copilot.cfb_seat_assignment_refreshed, environment.add_protection_rule, environment.create_actions_secret, environment.delete, environment.update_actions_secret, environment.update_protection_rule, gist.create, gist.destroy, gist.visibility_change, hook.active_changed, hook.config_changed, hook.create, hook.destroy, hook.events_changed, integration.create, integration_installation.create, integration_installation.destroy, integration_installation.repositories_added, integration_installation.repositories_removed, migration.create, oauth_access.create, oauth_access.regenerate, oauth_authorization.create, org.add_member, org.remove_member, project.update_user_permission, public_key.create, public_key.delete, public_key.update, public_key.verification_failure, public_key.verify, repo.access, repo.actions_enabled, repo.add_member, repo.add_topic, repo.advanced_security_disabled, repo.advanced_security_enabled, repo.archived, repo.change_merge_setting, repo.create, repo.create_actions_secret, repo.create_integration_secret, repo.destroy, repo.pages_cname, repo.pages_create, repo.pages_destroy, repo.pages_https_redirect_disabled, repo.pages_public, repo.pages_source, repo.remove_actions_secret, repo.remove_member, repo.remove_self_hosted_runner, repo.remove_topic, repo.rename, repo.unarchived, repo.update_actions_secret, repo.update_actions_settings, repo.update_default_branch, repo.update_integration_secret, repo.update_member, repository_invitation.accept, repository_invitation.create, user.block_user, user.codespaces_trusted_repo_access_granted, user.create, user.creation_rate_limit_exceeded, user.demote, user.promote, user.remove_email, user.rename, user.suspend, user.unsuspend, user_status.update, workflows.approve_workflow_job, workflows.delete_workflow_run, workflows.disable_workflow, workflows.enable_workflow, workflows.reject_workflow_job
ProgrammaticAccessType *string `json:"programmatic_access_type,omitempty"`
// Present in: 5/334 events – project.close, project.open, project.visibility_private, project.visibility_public, project_collaborator.update
ProjectId *string `json:"project_id,omitempty"`
// Present in: 4/334 events – project.close, project.open, project.visibility_private, project.visibility_public
ProjectKind *string `json:"project_kind,omitempty"`
// Present in: 5/334 events – project.open, project.visibility_private, project.visibility_public, project_collaborator.add, project_collaborator.update
ProjectName *string `json:"project_name,omitempty"`
// Present in: 2/334 events – project_collaborator.add, project_collaborator.update
ProjectRole *string `json:"project_role,omitempty"`
// Present in: 2/334 events – project_collaborator.add, project_collaborator.update
PublicProject *string `json:"public_project,omitempty"`
// Present in: 46/334 events – checks.auto_trigger_enabled, codespaces.connect, codespaces.export_environment, codespaces.restore, codespaces.start_environment, codespaces.suspend_environment, copilot.swe_agent_repo_disabled, copilot.swe_agent_repo_enabled, environment.create_actions_secret, environment.create_actions_variable, environment.delete, environment.remove_actions_secret, environment.remove_actions_variable, environment.remove_protection_rule, environment.update_actions_secret, environment.update_actions_variable, org.add_outside_collaborator, protected_branch.update_merge_queue_enforcement_level, repo.advanced_security_enabled, repo.change_merge_setting, repo.code_scanning_analysis_deleted, repo.code_scanning_configuration_for_branch_deleted, repo.create, repo.create_actions_variable, repo.create_integration_secret, repo.pages_soft_delete, repo.pages_soft_delete_restore, repo.remove_actions_variable, repo.remove_integration_secret, repo.set_actions_fork_pr_approvals_policy, repo.set_actions_private_fork_pr_approvals_policy, repo.set_default_workflow_permissions, repo.set_workflow_permission_can_approve_pr, repo.temporary_access_granted, repo.transfer_outgoing, repo.update_actions_variable, repo.update_integration_secret, repository_ruleset.create, repository_ruleset.destroy, repository_ruleset.update, workflows.approve_workflow_job, workflows.disable_workflow, workflows.enable_workflow, workflows.pin_workflow, workflows.reject_workflow_job, workflows.unpin_workflow
PublicRepo *string `json:"public_repo,omitempty"`
// Present in: 4/334 events – codespaces.connect, codespaces.create, codespaces.destroy, codespaces.start_environment
PullRequestId *string `json:"pull_request_id,omitempty"`
// Present in: 8/334 events – business.security_center_export_code_scanning_metrics, business.security_center_export_coverage, business.security_center_export_overview_dashboard, business.security_center_export_risk, org.security_center_export_code_scanning_metrics, org.security_center_export_coverage, org.security_center_export_overview_dashboard, org.security_center_export_risk
Query *string `json:"query,omitempty"`
// Present in: 7/334 events – public_key.create, public_key.delete, public_key.unverification_failure, public_key.unverify, public_key.update, public_key.verification_failure, public_key.verify
ReadOnly *string `json:"read_only,omitempty"`
// Present in: 107/334 events – actions_cache.delete, artifact.destroy, checks.auto_trigger_disabled, checks.auto_trigger_enabled, checks.delete_logs, codespaces.restore, codespaces.start_environment, copilot.swe_agent_repo_disabled, copilot.swe_agent_repo_enabled, environment.add_protection_rule, environment.create_actions_secret, environment.create_actions_variable, environment.delete, environment.remove_actions_secret, environment.remove_actions_variable, environment.remove_protection_rule, environment.update_actions_secret, environment.update_actions_variable, environment.update_protection_rule, hook.active_changed, hook.config_changed, hook.create, hook.destroy, hook.events_changed, migration.create, org.add_outside_collaborator, project.close, project.link, project.rename, project.unlink, protected_branch.update_merge_queue_enforcement_level, public_key.delete, public_key.unverify, public_key.update, public_key.verification_failure, repo.access, repo.actions_enabled, repo.add_member, repo.add_topic, repo.archived, repo.code_scanning_analysis_deleted, repo.code_scanning_configuration_for_branch_deleted, repo.config.disable_collaborators_only, repo.config.disable_contributors_only, repo.config.disable_sockpuppet_disallowed, repo.config.enable_collaborators_only, repo.config.enable_contributors_only, repo.config.enable_sockpuppet_disallowed, repo.create, repo.create_actions_secret, repo.create_actions_variable, repo.create_integration_secret, repo.destroy, repo.pages_cname, repo.pages_create, repo.pages_destroy, repo.pages_https_redirect_disabled, repo.pages_https_redirect_enabled, repo.pages_private, repo.pages_public, repo.pages_soft_delete, repo.pages_soft_delete_restore, repo.pages_source, repo.register_self_hosted_runner, repo.remove_actions_secret, repo.remove_actions_variable, repo.remove_integration_secret, repo.remove_member, repo.remove_self_hosted_runner, repo.remove_topic, repo.rename, repo.set_actions_fork_pr_approvals_policy, repo.set_actions_private_fork_pr_approvals_policy, repo.set_actions_retention_limit, repo.set_default_workflow_permissions, repo.set_fork_pr_workflows_policy, repo.set_workflow_permission_can_approve_pr, repo.staff_unlock, repo.temporary_access_granted, repo.transfer, repo.transfer_outgoing, repo.transfer_start, repo.unarchived, repo.update_actions_access_settings, repo.update_actions_secret, repo.update_actions_settings, repo.update_actions_variable, repo.update_default_branch, repo.update_integration_secret, repo.update_member, repository_image.create, repository_image.destroy, repository_invitation.accept, repository_invitation.cancel, repository_invitation.create, repository_invitation.reject, repository_ruleset.create, repository_ruleset.destroy, repository_ruleset.update, sponsors.update_tier_repository, workflows.approve_workflow_job, workflows.delete_workflow_run, workflows.disable_workflow, workflows.enable_workflow, workflows.pin_workflow, workflows.reject_workflow_job, workflows.unpin_workflow
Repo *string `json:"repo,omitempty"`
// Present in: 107/334 events – actions_cache.delete, artifact.destroy, checks.auto_trigger_disabled, checks.auto_trigger_enabled, checks.delete_logs, codespaces.restore, codespaces.start_environment, copilot.swe_agent_repo_disabled, copilot.swe_agent_repo_enabled, environment.add_protection_rule, environment.create_actions_secret, environment.create_actions_variable, environment.delete, environment.remove_actions_secret, environment.remove_actions_variable, environment.remove_protection_rule, environment.update_actions_secret, environment.update_actions_variable, environment.update_protection_rule, hook.active_changed, hook.config_changed, hook.create, hook.destroy, hook.events_changed, migration.create, org.add_outside_collaborator, project.close, project.link, project.rename, project.unlink, protected_branch.update_merge_queue_enforcement_level, public_key.delete, public_key.unverify, public_key.update, public_key.verification_failure, repo.access, repo.actions_enabled, repo.add_member, repo.add_topic, repo.archived, repo.code_scanning_analysis_deleted, repo.code_scanning_configuration_for_branch_deleted, repo.config.disable_collaborators_only, repo.config.disable_contributors_only, repo.config.disable_sockpuppet_disallowed, repo.config.enable_collaborators_only, repo.config.enable_contributors_only, repo.config.enable_sockpuppet_disallowed, repo.create, repo.create_actions_secret, repo.create_actions_variable, repo.create_integration_secret, repo.destroy, repo.pages_cname, repo.pages_create, repo.pages_destroy, repo.pages_https_redirect_disabled, repo.pages_https_redirect_enabled, repo.pages_private, repo.pages_public, repo.pages_soft_delete, repo.pages_soft_delete_restore, repo.pages_source, repo.register_self_hosted_runner, repo.remove_actions_secret, repo.remove_actions_variable, repo.remove_integration_secret, repo.remove_member, repo.remove_self_hosted_runner, repo.remove_topic, repo.rename, repo.set_actions_fork_pr_approvals_policy, repo.set_actions_private_fork_pr_approvals_policy, repo.set_actions_retention_limit, repo.set_default_workflow_permissions, repo.set_fork_pr_workflows_policy, repo.set_workflow_permission_can_approve_pr, repo.staff_unlock, repo.temporary_access_granted, repo.transfer, repo.transfer_outgoing, repo.transfer_start, repo.unarchived, repo.update_actions_access_settings, repo.update_actions_secret, repo.update_actions_settings, repo.update_actions_variable, repo.update_default_branch, repo.update_integration_secret, repo.update_member, repository_image.create, repository_image.destroy, repository_invitation.accept, repository_invitation.cancel, repository_invitation.create, repository_invitation.reject, repository_ruleset.create, repository_ruleset.destroy, repository_ruleset.update, sponsors.update_tier_repository, workflows.approve_workflow_job, workflows.delete_workflow_run, workflows.disable_workflow, workflows.enable_workflow, workflows.pin_workflow, workflows.reject_workflow_job, workflows.unpin_workflow
RepoId *int64 `json:"repo_id,omitempty"`
// Present in: 1/334 events – repo.transfer
RepoWas *string `json:"repo_was,omitempty"`
// Present in: 1/334 events – integration_installation.repositories_added
RepositoriesAdded []int64 `json:"repositories_added,omitempty"`
// Present in: 1/334 events – integration_installation.repositories_added
RepositoriesAddedNames []string `json:"repositories_added_names,omitempty"`
// Present in: 1/334 events – integration_installation.repositories_removed
RepositoriesRemoved *string `json:"repositories_removed,omitempty"`
// Present in: 1/334 events – integration_installation.repositories_removed
RepositoriesRemovedNames *string `json:"repositories_removed_names,omitempty"`
// Present in: 6/334 events – codespaces.connect, codespaces.create, codespaces.destroy, repo.advanced_security_disabled, repo.advanced_security_enabled, sponsors.repo_funding_links_file_action
Repository *string `json:"repository,omitempty"`
// Present in: 6/334 events – codespaces.connect, codespaces.create, codespaces.destroy, repo.advanced_security_disabled, repo.advanced_security_enabled, sponsors.repo_funding_links_file_action
RepositoryId *int64 `json:"repository_id,omitempty"`
// Present in: 14/334 events – integration_installation.create, integration_installation.destroy, integration_installation.repositories_added, integration_installation.repositories_removed, integration_installation.suspend, integration_installation.unsuspend, integration_installation.version_updated, personal_access_token.access_granted, personal_access_token.access_revoked, personal_access_token.create, personal_access_token.request_cancelled, personal_access_token.request_created, personal_access_token.request_denied, personal_access_token.update
RepositorySelection *string `json:"repository_selection,omitempty"`
// Present in: 135/334 events – actions_cache.delete, billing.change_email, business.security_center_export_code_scanning_metrics, business.security_center_export_coverage, business.security_center_export_overview_dashboard, business.set_actions_private_fork_pr_approvals_policy, business.set_default_workflow_permissions, business.set_fork_pr_workflows_policy, business.set_workflow_permission_can_approve_pr, codespaces.start_environment, copilot.cfb_seat_added, copilot.cfb_seat_assignment_created, copilot.cfb_seat_assignment_refreshed, copilot.cfb_seat_assignment_unassigned, copilot.cfb_seat_cancelled, copilot.swe_agent_repo_enabled, copilot.swe_agent_repo_enablement_updated, dependency_graph_new_repos.enable, environment.add_protection_rule, environment.create_actions_secret, environment.create_actions_variable, environment.delete, environment.remove_actions_secret, environment.remove_actions_variable, environment.remove_protection_rule, environment.update_actions_secret, environment.update_actions_variable, git_signing_ssh_public_key.create, git_signing_ssh_public_key.delete, integration.create, integration.remove_client_secret, integration_installation.suspend, marketplace_agreement_signature.create, migration.create, oauth_access.create, oauth_access.revoke, oauth_access.update, oauth_application.create, oauth_application.destroy, oauth_application.generate_client_secret, oauth_application.remove_client_secret, oauth_application.revoke_all_tokens, oauth_application.revoke_tokens, oauth_authorization.create, oauth_authorization.update, org.add_outside_collaborator, org.security_center_export_coverage, org.security_center_export_overview_dashboard, org.security_center_export_risk, org.set_default_workflow_permissions, org.set_workflow_permission_can_approve_pr, pages_protected_domain.create, pages_protected_domain.verify, passkey.register, passkey.remove, payment_method.create, payment_method.remove, payment_method.update, personal_access_token.credential_regenerated, personal_access_token.destroy, project.visibility_public, project_collaborator.add, project_collaborator.remove, project_collaborator.update, project_field.create, project_field.delete, project_view.create, project_view.delete, repo.advanced_security_disabled, repo.code_scanning_analysis_deleted, repo.create_actions_variable, repo.create_integration_secret, repo.pages_https_redirect_disabled, repo.pages_https_redirect_enabled, repo.pages_public, repo.pages_soft_delete, repo.pages_soft_delete_restore, repo.register_self_hosted_runner, repo.remove_actions_variable, repo.remove_integration_secret, repo.set_default_workflow_permissions, repo.set_workflow_permission_can_approve_pr, repo.transfer_outgoing, repo.transfer_start, repo.update_actions_variable, repo.update_integration_secret, repository_image.create, repository_image.destroy, repository_invitation.cancel, repository_ruleset.create, repository_ruleset.destroy, security_key.register, security_key.remove, sponsors.sponsor_sponsorship_payment_complete, sponsors.sponsored_developer_profile_update, two_factor_authentication.add_factor, two_factor_authentication.disabled, two_factor_authentication.enabled, two_factor_authentication.remove_factor, user.add_email, user.async_delete, user.block_user, user.change_password, user.create_integration_secret, user.delete, user.demote, user.destroy, user.forgot_password, user.hide_private_contributions_count, user.login, user.logout, user.new_device_used, user.promote, user.remove_integration_secret, user.reset_password, user.show_private_contributions_count, user.sign_in_from_unrecognized_device, user.sign_in_from_unrecognized_device_and_location, user.suspend, user.two_factor_challenge_failure, user.two_factor_challenge_success, user.two_factor_recover, user.two_factor_recovery_codes_downloaded, user.two_factor_recovery_codes_viewed, user.unblock_user, user.unsuspend, user.update_integration_secret, user_email.confirm_claim, user_status.destroy, workflows.approve_workflow_job, workflows.disable_workflow, workflows.enable_workflow, workflows.pin_workflow, workflows.reject_workflow_job, workflows.unpin_workflow
RequestAccessSecurityHeader *string `json:"request_access_security_header,omitempty"`
// Present in: 2/334 events – repo.create, repo.destroy
RequestCategory *string `json:"request_category,omitempty"`
// Present in: 327/334 events – account.plan_change, actions_cache.delete, artifact.destroy, billing.change_billing_type, billing.change_email, business.security_center_export_code_scanning_metrics, business.security_center_export_coverage, business.security_center_export_overview_dashboard, business.security_center_export_risk, business.set_actions_fork_pr_approvals_policy, business.set_actions_private_fork_pr_approvals_policy, business.set_actions_retention_limit, business.set_default_workflow_permissions, business.set_fork_pr_workflows_policy, business.set_workflow_permission_can_approve_pr, checks.auto_trigger_disabled, checks.auto_trigger_enabled, checks.delete_logs, codespaces.allow_permissions, codespaces.connect, codespaces.create, codespaces.destroy, codespaces.export_environment, codespaces.restore, codespaces.start_environment, codespaces.suspend_environment, codespaces.trusted_repositories_access_update, copilot.cfb_seat_added, copilot.cfb_seat_assignment_created, copilot.cfb_seat_assignment_refreshed, copilot.cfb_seat_assignment_reused, copilot.cfb_seat_assignment_unassigned, copilot.cfb_seat_cancelled, copilot.cfb_seat_cancelled_by_staff, copilot.swe_agent_repo_enabled, copilot.swe_agent_repo_enablement_updated, dependabot_alerts.disable, dependabot_alerts.enable, dependabot_alerts_new_repos.disable, dependabot_alerts_new_repos.enable, dependabot_repository_access.repositories_updated, dependabot_security_updates.disable, dependabot_security_updates.enable, dependabot_security_updates_new_repos.disable, dependabot_security_updates_new_repos.enable, dependency_graph.disable, dependency_graph.enable, dependency_graph_new_repos.disable, dependency_graph_new_repos.enable, environment.add_protection_rule, environment.create_actions_secret, environment.create_actions_variable, environment.delete, environment.remove_actions_secret, environment.remove_actions_variable, environment.remove_protection_rule, environment.update_actions_secret, environment.update_actions_variable, environment.update_protection_rule, gist.create, gist.destroy, gist.visibility_change, git_signing_ssh_public_key.create, git_signing_ssh_public_key.delete, hook.active_changed, hook.config_changed, hook.create, hook.destroy, hook.events_changed, integration.create, integration.destroy, integration.manager_added, integration.manager_removed, integration.remove_client_secret, integration.revoke_all_tokens, integration.revoke_tokens, integration.suspend, integration.transfer, integration.unsuspend, integration_installation.create, integration_installation.destroy, integration_installation.repositories_added, integration_installation.repositories_removed, integration_installation.suspend, integration_installation.unsuspend, integration_installation.version_updated, marketplace_agreement_signature.create, marketplace_listing.approve, marketplace_listing.change_category, marketplace_listing.create, marketplace_listing.delist, marketplace_listing.redraft, marketplace_listing.reject, migration.create, oauth_access.create, oauth_access.destroy, oauth_access.regenerate, oauth_access.revoke, oauth_access.update, oauth_application.create, oauth_application.destroy, oauth_application.generate_client_secret, oauth_application.remove_client_secret, oauth_application.reset_secret, oauth_application.revoke_all_tokens, oauth_application.revoke_tokens, oauth_application.transfer, oauth_authorization.create, oauth_authorization.destroy, oauth_authorization.update, org.add_member, org.add_outside_collaborator, org.advanced_security_disabled_for_new_repos, org.advanced_security_disabled_on_all_repos, org.advanced_security_enabled_for_new_repos, org.advanced_security_enabled_on_all_repos, org.remove_member, org.security_center_export_code_scanning_metrics, org.security_center_export_coverage, org.security_center_export_overview_dashboard, org.security_center_export_risk, org.set_actions_fork_pr_approvals_policy, org.set_actions_private_fork_pr_approvals_policy, org.set_actions_retention_limit, org.set_default_workflow_permissions, org.set_fork_pr_workflows_policy, org.set_workflow_permission_can_approve_pr, org.update_member, org.update_member_repository_creation_permission, org.update_member_repository_invitation_permission, pages_protected_domain.create, pages_protected_domain.delete, pages_protected_domain.verify, passkey.register, passkey.remove, payment_method.create, payment_method.update, personal_access_token.access_granted, personal_access_token.access_revoked, personal_access_token.create, personal_access_token.credential_regenerated, personal_access_token.destroy, personal_access_token.request_cancelled, personal_access_token.request_created, personal_access_token.request_denied, personal_access_token.update, profile_picture.update, project.access, project.close, project.create, project.delete, project.link, project.open, project.rename, project.unlink, project.update_org_permission, project.update_team_permission, project.update_user_permission, project.visibility_private, project.visibility_public, project_collaborator.add, project_collaborator.remove, project_collaborator.update, project_field.create, project_field.delete, project_view.create, project_view.delete, protected_branch.update_merge_queue_enforcement_level, public_key.create, public_key.delete, public_key.unverification_failure, public_key.unverify, public_key.update, public_key.verification_failure, public_key.verify, repo.access, repo.actions_enabled, repo.add_member, repo.add_topic, repo.advanced_security_disabled, repo.advanced_security_enabled, repo.archived, repo.change_merge_setting, repo.code_scanning_analysis_deleted, repo.code_scanning_configuration_for_branch_deleted, repo.config.disable_collaborators_only, repo.config.disable_contributors_only, repo.config.disable_sockpuppet_disallowed, repo.config.enable_collaborators_only, repo.config.enable_contributors_only, repo.config.enable_sockpuppet_disallowed, repo.create, repo.create_actions_secret, repo.create_actions_variable, repo.create_integration_secret, repo.destroy, repo.pages_cname, repo.pages_create, repo.pages_destroy, repo.pages_https_redirect_disabled, repo.pages_https_redirect_enabled, repo.pages_private, repo.pages_public, repo.pages_soft_delete_restore, repo.pages_source, repo.register_self_hosted_runner, repo.remove_actions_secret, repo.remove_actions_variable, repo.remove_integration_secret, repo.remove_member, repo.remove_self_hosted_runner, repo.remove_topic, repo.rename, repo.set_actions_fork_pr_approvals_policy, repo.set_actions_private_fork_pr_approvals_policy, repo.set_actions_retention_limit, repo.set_default_workflow_permissions, repo.set_fork_pr_workflows_policy, repo.set_workflow_permission_can_approve_pr, repo.staff_unlock, repo.temporary_access_granted, repo.transfer, repo.transfer_outgoing, repo.transfer_start, repo.unarchived, repo.update_actions_access_settings, repo.update_actions_secret, repo.update_actions_settings, repo.update_actions_variable, repo.update_default_branch, repo.update_integration_secret, repo.update_member, repository_image.create, repository_image.destroy, repository_invitation.accept, repository_invitation.cancel, repository_invitation.create, repository_invitation.reject, repository_ruleset.create, repository_ruleset.destroy, repository_ruleset.update, security_key.register, security_key.remove, sponsors.agreement_sign, sponsors.custom_amount_settings_change, sponsors.fiscal_host_change, sponsors.repo_funding_links_file_action, sponsors.sponsor_sponsorship_create, sponsors.sponsor_sponsorship_preference_change, sponsors.sponsored_developer_approve, sponsors.sponsored_developer_create, sponsors.sponsored_developer_disable, sponsors.sponsored_developer_profile_update, sponsors.sponsored_developer_redraft, sponsors.sponsored_developer_request_approval, sponsors.sponsored_developer_tier_description_update, sponsors.sponsored_developer_update_newsletter_send, sponsors.sponsors_patreon_user_create, sponsors.sponsors_patreon_user_destroy, sponsors.update_tier_repository, sponsors.update_tier_welcome_message, sponsors.waitlist_join, sponsors.withdraw_agreement_signature, successor_invitation.accept, successor_invitation.cancel, successor_invitation.create, successor_invitation.decline, successor_invitation.revoke, trusted_device.register, trusted_device.remove, two_factor_authentication.add_factor, two_factor_authentication.disabled, two_factor_authentication.enabled, two_factor_authentication.password_reset_fallback_sms, two_factor_authentication.recovery_codes_regenerated, two_factor_authentication.remove_factor, two_factor_authentication.sign_in_fallback_sms, two_factor_authentication.update_fallback, user.add_email, user.async_delete, user.audit_log_export, user.block_user, user.change_password, user.codespaces_trusted_repo_access_granted, user.codespaces_trusted_repo_access_revoked, user.create, user.create_integration_secret, user.creation_rate_limit_exceeded, user.delete, user.demote, user.destroy, user.failed_login, user.forgot_password, user.hide_private_contributions_count, user.login, user.logout, user.new_device_used, user.promote, user.recreate, user.remove_email, user.remove_integration_secret, user.rename, user.reset_password, user.show_private_contributions_count, user.sign_in_from_unrecognized_device, user.sign_in_from_unrecognized_device_and_location, user.suspend, user.two_factor_challenge_failure, user.two_factor_challenge_success, user.two_factor_recover, user.two_factor_recovery_codes_downloaded, user.two_factor_recovery_codes_printed, user.two_factor_recovery_codes_viewed, user.two_factor_requested, user.unblock_user, user.unsuspend, user.update_integration_secret, user_email.confirm_claim, user_status.destroy, user_status.update, workflows.approve_workflow_job, workflows.delete_workflow_run, workflows.disable_workflow, workflows.enable_workflow, workflows.pin_workflow, workflows.reject_workflow_job, workflows.unpin_workflow
RequestId *string `json:"request_id,omitempty"`
// Present in: 2/334 events – repo.create, repo.destroy
RequestMethod *string `json:"request_method,omitempty"`
// Present in: 8/334 events – business.security_center_export_code_scanning_metrics, business.security_center_export_coverage, business.security_center_export_overview_dashboard, business.security_center_export_risk, org.security_center_export_code_scanning_metrics, org.security_center_export_coverage, org.security_center_export_overview_dashboard, org.security_center_export_risk
RequestedAt *time.Time `json:"requested_at,omitempty"`
// Present in: 1/334 events – integration.transfer
Requester *string `json:"requester,omitempty"`
// Present in: 1/334 events – integration.transfer
RequesterId *string `json:"requester_id,omitempty"`
// Present in personal access token events
Repositories []int64 `json:"repositories,omitempty"`
// Present in environment-related events
EnvironmentId *int64 `json:"environment_id,omitempty"`
// Present in events with value changes
OldValue *string `json:"old_value,omitempty"`
// Present in: 2/334 events – repository_ruleset.create, repository_ruleset.destroy
RulesetBypassActors *string `json:"ruleset_bypass_actors,omitempty"`
// Present in: 1/334 events – repository_ruleset.update
RulesetBypassActorsAdded *string `json:"ruleset_bypass_actors_added,omitempty"`
// Present in: 1/334 events – repository_ruleset.update
RulesetBypassActorsDeleted *string `json:"ruleset_bypass_actors_deleted,omitempty"`
// Present in: 1/334 events – repository_ruleset.update
RulesetBypassActorsUpdated *string `json:"ruleset_bypass_actors_updated,omitempty"`
// Present in: 1/334 events – repository_ruleset.create
RulesetConditions []map[string]interface{} `json:"ruleset_conditions,omitempty"`
// Present in: 1/334 events – repository_ruleset.update
RulesetConditionsAdded *string `json:"ruleset_conditions_added,omitempty"`
// Present in: 1/334 events – repository_ruleset.update
RulesetConditionsDeleted *string `json:"ruleset_conditions_deleted,omitempty"`
// Present in: 1/334 events – repository_ruleset.update
RulesetConditionsUpdated *string `json:"ruleset_conditions_updated,omitempty"`
// Present in: 3/334 events – repository_ruleset.create, repository_ruleset.destroy, repository_ruleset.update
RulesetEnforcement *string `json:"ruleset_enforcement,omitempty"`
// Present in: 3/334 events – repository_ruleset.create, repository_ruleset.destroy, repository_ruleset.update
RulesetId *int64 `json:"ruleset_id,omitempty"`
// Present in: 3/334 events – repository_ruleset.create, repository_ruleset.destroy, repository_ruleset.update
RulesetName *string `json:"ruleset_name,omitempty"`
// Present in: 1/334 events – repository_ruleset.update
RulesetOldEnforcement *string `json:"ruleset_old_enforcement,omitempty"`
// Present in: 1/334 events – repository_ruleset.update
RulesetOldName *string `json:"ruleset_old_name,omitempty"`
// Present in: 2/334 events – repository_ruleset.create, repository_ruleset.destroy
RulesetRules []map[string]interface{} `json:"ruleset_rules,omitempty"`
// Present in: 1/334 events – repository_ruleset.update
RulesetRulesAdded *string `json:"ruleset_rules_added,omitempty"`
// Present in: 1/334 events – repository_ruleset.update
RulesetRulesDeleted *string `json:"ruleset_rules_deleted,omitempty"`
// Present in: 1/334 events – repository_ruleset.update
RulesetRulesUpdated *string `json:"ruleset_rules_updated,omitempty"`
// Present in: 3/334 events – repository_ruleset.create, repository_ruleset.destroy, repository_ruleset.update
RulesetSourceType *string `json:"ruleset_source_type,omitempty"`
// Present in: 2/334 events – workflows.approve_workflow_job, workflows.reject_workflow_job
RunNumber *string `json:"run_number,omitempty"`
// Present in: 1/334 events – copilot.cfb_seat_cancelled
SeatAssignment *string `json:"seat_assignment,omitempty"`
// Present in: 6/334 events – marketplace_listing.approve, marketplace_listing.change_category, marketplace_listing.create, marketplace_listing.delist, marketplace_listing.redraft, marketplace_listing.reject
SecondaryCategory *string `json:"secondary_category,omitempty"`
// Present in: 7/334 events – sponsors.agreement_sign, sponsors.custom_amount_settings_change, sponsors.fiscal_host_change, sponsors.sponsored_developer_disable, sponsors.update_tier_repository, sponsors.update_tier_welcome_message, sponsors.withdraw_agreement_signature
SponsorsListingId *string `json:"sponsors_listing_id,omitempty"`
// Present in: 4/334 events – business.security_center_export_code_scanning_metrics, business.security_center_export_overview_dashboard, org.security_center_export_code_scanning_metrics, org.security_center_export_overview_dashboard
StartDate *time.Time `json:"start_date,omitempty"`
// Present in: 1/334 events – workflows.delete_workflow_run
StartedAt *string `json:"started_at,omitempty"`
// Present in: 3/334 events – pages_protected_domain.create, pages_protected_domain.delete, pages_protected_domain.verify
State *string `json:"state,omitempty"`
// Present in: 1/334 events – project.update_team_permission
Team *string `json:"team,omitempty"`
// Present in: 9/334 events – git_signing_ssh_public_key.create, git_signing_ssh_public_key.delete, public_key.create, public_key.delete, public_key.unverification_failure, public_key.unverify, public_key.update, public_key.verification_failure, public_key.verify
Title *string `json:"title,omitempty"`
// Present in: 3/334 events – copilot.cfb_seat_added, copilot.cfb_seat_assignment_refreshed, oauth_access.revoke
TokenId *int64 `json:"token_id,omitempty"`
// Present in: 58/334 events – actions_cache.delete, codespaces.connect, codespaces.create, codespaces.destroy, codespaces.suspend_environment, copilot.cfb_seat_assignment_refreshed, environment.create_actions_secret, environment.delete, environment.remove_actions_secret, gist.create, gist.visibility_change, git_signing_ssh_public_key.create, git_signing_ssh_public_key.delete, hook.config_changed, hook.create, hook.destroy, hook.events_changed, integration_installation.repositories_added, migration.create, oauth_access.create, oauth_access.destroy, oauth_access.regenerate, oauth_access.revoke, oauth_authorization.create, oauth_authorization.destroy, org.advanced_security_disabled_for_new_repos, org.advanced_security_disabled_on_all_repos, org.advanced_security_enabled_for_new_repos, org.advanced_security_enabled_on_all_repos, org.remove_member, public_key.create, public_key.delete, public_key.unverification_failure, public_key.verify, repo.actions_enabled, repo.add_member, repo.archived, repo.change_merge_setting, repo.create, repo.create_actions_secret, repo.destroy, repo.remove_actions_secret, repo.remove_member, repo.remove_self_hosted_runner, repo.update_actions_secret, repo.update_default_branch, repo.update_integration_secret, repo.update_member, repository_invitation.accept, repository_invitation.create, user.creation_rate_limit_exceeded, user.promote, user.remove_email, user.rename, user.suspend, user.unsuspend, user_status.update, workflows.approve_workflow_job
TokenScopes *string `json:"token_scopes,omitempty"`
// Present in: 2/334 events – repo.code_scanning_analysis_deleted, repo.code_scanning_configuration_for_branch_deleted
Tool *string `json:"tool,omitempty"`
// Present in: 2/334 events – repo.add_topic, repo.remove_topic
Topic *string `json:"topic,omitempty"`
// Present in: 1/334 events – integration.transfer
TransferFrom *string `json:"transfer_from,omitempty"`
// Present in: 1/334 events – integration.transfer
TransferFromId *string `json:"transfer_from_id,omitempty"`
// Present in: 1/334 events – integration.transfer
TransferFromType *string `json:"transfer_from_type,omitempty"`
// Present in: 1/334 events – integration.transfer
TransferTo *string `json:"transfer_to,omitempty"`
// Present in: 1/334 events – integration.transfer
TransferToId *string `json:"transfer_to_id,omitempty"`
// Present in: 1/334 events – integration.transfer
TransferToType *string `json:"transfer_to_type,omitempty"`
// Present in: 1/334 events – workflows.delete_workflow_run
TriggerId *string `json:"trigger_id,omitempty"`
// Present in: 1/334 events – repo.update_actions_settings
UpdatedAccessPolicy *string `json:"updated_access_policy,omitempty"`
// Present in: 200/334 events – account.plan_change, actions_cache.delete, billing.change_billing_type, business.security_center_export_code_scanning_metrics, business.security_center_export_coverage, business.security_center_export_overview_dashboard, business.security_center_export_risk, checks.auto_trigger_disabled, checks.auto_trigger_enabled, codespaces.start_environment, copilot.cfb_seat_added, copilot.cfb_seat_cancelled, copilot.cfb_seat_cancelled_by_staff, dependabot_alerts.disable, dependabot_alerts.enable, dependabot_alerts_new_repos.disable, dependabot_alerts_new_repos.enable, dependabot_security_updates.disable, dependabot_security_updates.enable, dependabot_security_updates_new_repos.disable, dependabot_security_updates_new_repos.enable, dependency_graph.disable, dependency_graph.enable, dependency_graph_new_repos.disable, dependency_graph_new_repos.enable, gist.create, gist.destroy, gist.visibility_change, git_signing_ssh_public_key.create, git_signing_ssh_public_key.delete, integration.create, integration.destroy, integration.remove_client_secret, integration.revoke_all_tokens, integration.revoke_tokens, integration.suspend, integration.transfer, integration.unsuspend, integration_installation.create, integration_installation.destroy, integration_installation.repositories_added, integration_installation.repositories_removed, integration_installation.suspend, integration_installation.unsuspend, integration_installation.version_updated, marketplace_agreement_signature.create, marketplace_listing.approve, marketplace_listing.create, marketplace_listing.redraft, marketplace_listing.reject, oauth_access.create, oauth_access.destroy, oauth_access.regenerate, oauth_access.revoke, oauth_access.update, oauth_application.destroy, oauth_application.generate_client_secret, oauth_application.remove_client_secret, oauth_application.reset_secret, oauth_application.revoke_all_tokens, oauth_application.revoke_tokens, oauth_application.transfer, oauth_authorization.create, oauth_authorization.destroy, oauth_authorization.update, org.add_member, org.advanced_security_disabled_on_all_repos, org.advanced_security_enabled_on_all_repos, org.remove_member, org.security_center_export_code_scanning_metrics, org.security_center_export_coverage, org.security_center_export_overview_dashboard, org.security_center_export_risk, org.update_member, passkey.register, passkey.remove, payment_method.create, payment_method.remove, personal_access_token.access_granted, personal_access_token.access_revoked, personal_access_token.create, personal_access_token.credential_regenerated, personal_access_token.credential_revoked, personal_access_token.destroy, personal_access_token.request_created, personal_access_token.update, profile_picture.update, project.access, project.create, project.delete, project.open, project.update_user_permission, project_collaborator.remove, project_collaborator.update, public_key.create, public_key.unverification_failure, public_key.verification_failure, public_key.verify, repo.access, repo.add_member, repo.add_topic, repo.archived, repo.create, repo.destroy, repo.pages_cname, repo.pages_create, repo.pages_destroy, repo.pages_https_redirect_disabled, repo.pages_https_redirect_enabled, repo.pages_source, repo.remove_member, repo.remove_topic, repo.rename, repo.set_actions_retention_limit, repo.set_default_workflow_permissions, repo.set_fork_pr_workflows_policy, repo.set_workflow_permission_can_approve_pr, repo.temporary_access_granted, repo.transfer, repo.transfer_start, repo.unarchived, repo.update_default_branch, repo.update_member, repository_image.create, repository_image.destroy, security_key.register, security_key.remove, sponsors.agreement_sign, sponsors.sponsor_sponsorship_cancel, sponsors.sponsor_sponsorship_create, sponsors.sponsor_sponsorship_payment_complete, sponsors.sponsor_sponsorship_preference_change, sponsors.sponsor_sponsorship_tier_change, sponsors.sponsored_developer_approve, sponsors.sponsored_developer_create, sponsors.sponsored_developer_disable, sponsors.sponsored_developer_redraft, sponsors.sponsored_developer_request_approval, sponsors.sponsored_developer_tier_description_update, sponsors.sponsored_developer_update_newsletter_send, sponsors.sponsors_patreon_user_create, sponsors.sponsors_patreon_user_destroy, sponsors.update_tier_repository, sponsors.update_tier_welcome_message, sponsors.waitlist_join, sponsors.withdraw_agreement_signature, trusted_device.register, trusted_device.remove, two_factor_authentication.add_factor, two_factor_authentication.disabled, two_factor_authentication.enabled, two_factor_authentication.password_reset_fallback_sms, two_factor_authentication.recovery_codes_regenerated, two_factor_authentication.remove_factor, two_factor_authentication.sign_in_fallback_sms, two_factor_authentication.update_fallback, user.add_email, user.async_delete, user.audit_log_export, user.block_user, user.change_password, user.codespaces_trusted_repo_access_granted, user.codespaces_trusted_repo_access_revoked, user.create, user.create_integration_secret, user.creation_rate_limit_exceeded, user.delete, user.demote, user.destroy, user.failed_login, user.forgot_password, user.hide_private_contributions_count, user.login, user.logout, user.new_device_used, user.promote, user.recreate, user.remove_email, user.remove_integration_secret, user.rename, user.reset_password, user.show_private_contributions_count, user.sign_in_from_unrecognized_device, user.sign_in_from_unrecognized_device_and_location, user.suspend, user.two_factor_challenge_failure, user.two_factor_challenge_success, user.two_factor_recover, user.two_factor_recovery_codes_downloaded, user.two_factor_recovery_codes_printed, user.two_factor_recovery_codes_viewed, user.two_factor_requested, user.unblock_user, user.unsuspend, user.update_integration_secret, user_email.confirm_claim, user_status.destroy, user_status.update, workflows.approve_workflow_job, workflows.reject_workflow_job
User *string `json:"user,omitempty"`
// Present in: 326/334 events – account.plan_change, actions_cache.delete, artifact.destroy, billing.change_billing_type, billing.change_email, business.security_center_export_code_scanning_metrics, business.security_center_export_coverage, business.security_center_export_overview_dashboard, business.security_center_export_risk, business.set_actions_fork_pr_approvals_policy, business.set_actions_private_fork_pr_approvals_policy, business.set_actions_retention_limit, business.set_default_workflow_permissions, business.set_fork_pr_workflows_policy, business.set_workflow_permission_can_approve_pr, checks.auto_trigger_disabled, checks.auto_trigger_enabled, checks.delete_logs, codespaces.allow_permissions, codespaces.connect, codespaces.create, codespaces.destroy, codespaces.export_environment, codespaces.restore, codespaces.start_environment, codespaces.suspend_environment, codespaces.trusted_repositories_access_update, copilot.cfb_seat_added, copilot.cfb_seat_assignment_created, copilot.cfb_seat_assignment_refreshed, copilot.cfb_seat_assignment_reused, copilot.cfb_seat_assignment_unassigned, copilot.cfb_seat_cancelled, copilot.cfb_seat_cancelled_by_staff, copilot.swe_agent_repo_enabled, copilot.swe_agent_repo_enablement_updated, dependabot_alerts.disable, dependabot_alerts.enable, dependabot_alerts_new_repos.disable, dependabot_alerts_new_repos.enable, dependabot_repository_access.repositories_updated, dependabot_security_updates.disable, dependabot_security_updates.enable, dependabot_security_updates_new_repos.disable, dependabot_security_updates_new_repos.enable, dependency_graph.disable, dependency_graph.enable, dependency_graph_new_repos.disable, dependency_graph_new_repos.enable, environment.add_protection_rule, environment.create_actions_secret, environment.create_actions_variable, environment.delete, environment.remove_actions_secret, environment.remove_actions_variable, environment.remove_protection_rule, environment.update_actions_secret, environment.update_actions_variable, environment.update_protection_rule, gist.create, gist.destroy, gist.visibility_change, git_signing_ssh_public_key.create, git_signing_ssh_public_key.delete, hook.active_changed, hook.config_changed, hook.create, hook.destroy, hook.events_changed, integration.create, integration.destroy, integration.manager_added, integration.manager_removed, integration.remove_client_secret, integration.revoke_all_tokens, integration.revoke_tokens, integration.suspend, integration.transfer, integration.unsuspend, integration_installation.create, integration_installation.destroy, integration_installation.repositories_added, integration_installation.repositories_removed, integration_installation.suspend, integration_installation.unsuspend, integration_installation.version_updated, marketplace_agreement_signature.create, marketplace_listing.approve, marketplace_listing.change_category, marketplace_listing.create, marketplace_listing.delist, marketplace_listing.redraft, marketplace_listing.reject, migration.create, oauth_access.create, oauth_access.destroy, oauth_access.regenerate, oauth_access.update, oauth_application.create, oauth_application.destroy, oauth_application.generate_client_secret, oauth_application.remove_client_secret, oauth_application.reset_secret, oauth_application.revoke_all_tokens, oauth_application.revoke_tokens, oauth_application.transfer, oauth_authorization.create, oauth_authorization.destroy, oauth_authorization.update, org.add_member, org.add_outside_collaborator, org.advanced_security_disabled_for_new_repos, org.advanced_security_disabled_on_all_repos, org.advanced_security_enabled_for_new_repos, org.advanced_security_enabled_on_all_repos, org.remove_member, org.security_center_export_code_scanning_metrics, org.security_center_export_coverage, org.security_center_export_overview_dashboard, org.security_center_export_risk, org.set_actions_fork_pr_approvals_policy, org.set_actions_private_fork_pr_approvals_policy, org.set_actions_retention_limit, org.set_default_workflow_permissions, org.set_fork_pr_workflows_policy, org.set_workflow_permission_can_approve_pr, org.update_member, org.update_member_repository_creation_permission, org.update_member_repository_invitation_permission, pages_protected_domain.create, pages_protected_domain.delete, pages_protected_domain.verify, passkey.register, passkey.remove, payment_method.create, payment_method.update, personal_access_token.access_granted, personal_access_token.access_revoked, personal_access_token.create, personal_access_token.credential_regenerated, personal_access_token.destroy, personal_access_token.request_cancelled, personal_access_token.request_created, personal_access_token.request_denied, personal_access_token.update, profile_picture.update, project.access, project.close, project.create, project.delete, project.link, project.open, project.rename, project.unlink, project.update_org_permission, project.update_team_permission, project.update_user_permission, project.visibility_private, project.visibility_public, project_collaborator.add, project_collaborator.remove, project_collaborator.update, project_field.create, project_field.delete, project_view.create, project_view.delete, protected_branch.update_merge_queue_enforcement_level, public_key.create, public_key.delete, public_key.unverification_failure, public_key.unverify, public_key.update, public_key.verification_failure, public_key.verify, repo.access, repo.actions_enabled, repo.add_member, repo.add_topic, repo.advanced_security_disabled, repo.advanced_security_enabled, repo.archived, repo.change_merge_setting, repo.code_scanning_analysis_deleted, repo.code_scanning_configuration_for_branch_deleted, repo.config.disable_collaborators_only, repo.config.disable_contributors_only, repo.config.disable_sockpuppet_disallowed, repo.config.enable_collaborators_only, repo.config.enable_contributors_only, repo.config.enable_sockpuppet_disallowed, repo.create, repo.create_actions_secret, repo.create_actions_variable, repo.create_integration_secret, repo.destroy, repo.pages_cname, repo.pages_create, repo.pages_destroy, repo.pages_https_redirect_disabled, repo.pages_https_redirect_enabled, repo.pages_private, repo.pages_public, repo.pages_soft_delete_restore, repo.pages_source, repo.register_self_hosted_runner, repo.remove_actions_secret, repo.remove_actions_variable, repo.remove_integration_secret, repo.remove_member, repo.remove_self_hosted_runner, repo.remove_topic, repo.rename, repo.set_actions_fork_pr_approvals_policy, repo.set_actions_private_fork_pr_approvals_policy, repo.set_actions_retention_limit, repo.set_default_workflow_permissions, repo.set_fork_pr_workflows_policy, repo.set_workflow_permission_can_approve_pr, repo.staff_unlock, repo.temporary_access_granted, repo.transfer, repo.transfer_outgoing, repo.transfer_start, repo.unarchived, repo.update_actions_access_settings, repo.update_actions_secret, repo.update_actions_settings, repo.update_actions_variable, repo.update_default_branch, repo.update_integration_secret, repo.update_member, repository_image.create, repository_image.destroy, repository_invitation.accept, repository_invitation.cancel, repository_invitation.create, repository_invitation.reject, repository_ruleset.create, repository_ruleset.destroy, repository_ruleset.update, security_key.register, security_key.remove, sponsors.agreement_sign, sponsors.custom_amount_settings_change, sponsors.fiscal_host_change, sponsors.repo_funding_links_file_action, sponsors.sponsor_sponsorship_create, sponsors.sponsor_sponsorship_preference_change, sponsors.sponsored_developer_approve, sponsors.sponsored_developer_create, sponsors.sponsored_developer_disable, sponsors.sponsored_developer_profile_update, sponsors.sponsored_developer_redraft, sponsors.sponsored_developer_request_approval, sponsors.sponsored_developer_tier_description_update, sponsors.sponsored_developer_update_newsletter_send, sponsors.sponsors_patreon_user_create, sponsors.sponsors_patreon_user_destroy, sponsors.update_tier_repository, sponsors.update_tier_welcome_message, sponsors.waitlist_join, sponsors.withdraw_agreement_signature, successor_invitation.accept, successor_invitation.cancel, successor_invitation.create, successor_invitation.decline, successor_invitation.revoke, trusted_device.register, trusted_device.remove, two_factor_authentication.add_factor, two_factor_authentication.disabled, two_factor_authentication.enabled, two_factor_authentication.password_reset_fallback_sms, two_factor_authentication.recovery_codes_regenerated, two_factor_authentication.remove_factor, two_factor_authentication.sign_in_fallback_sms, two_factor_authentication.update_fallback, user.add_email, user.async_delete, user.audit_log_export, user.block_user, user.change_password, user.codespaces_trusted_repo_access_granted, user.codespaces_trusted_repo_access_revoked, user.create, user.create_integration_secret, user.creation_rate_limit_exceeded, user.delete, user.demote, user.destroy, user.failed_login, user.forgot_password, user.hide_private_contributions_count, user.login, user.logout, user.new_device_used, user.promote, user.recreate, user.remove_email, user.remove_integration_secret, user.rename, user.reset_password, user.show_private_contributions_count, user.sign_in_from_unrecognized_device, user.sign_in_from_unrecognized_device_and_location, user.suspend, user.two_factor_challenge_failure, user.two_factor_challenge_success, user.two_factor_recover, user.two_factor_recovery_codes_downloaded, user.two_factor_recovery_codes_printed, user.two_factor_recovery_codes_viewed, user.two_factor_requested, user.unblock_user, user.unsuspend, user.update_integration_secret, user_email.confirm_claim, user_status.destroy, user_status.update, workflows.approve_workflow_job, workflows.delete_workflow_run, workflows.disable_workflow, workflows.enable_workflow, workflows.pin_workflow, workflows.reject_workflow_job, workflows.unpin_workflow
UserAgent *string `json:"user_agent,omitempty"`
// Present in: 201/334 events – account.plan_change, actions_cache.delete, billing.change_billing_type, business.security_center_export_code_scanning_metrics, business.security_center_export_coverage, business.security_center_export_overview_dashboard, business.security_center_export_risk, checks.auto_trigger_disabled, checks.auto_trigger_enabled, codespaces.connect, codespaces.start_environment, copilot.cfb_seat_added, copilot.cfb_seat_cancelled, copilot.cfb_seat_cancelled_by_staff, dependabot_alerts.disable, dependabot_alerts.enable, dependabot_alerts_new_repos.disable, dependabot_alerts_new_repos.enable, dependabot_security_updates.disable, dependabot_security_updates.enable, dependabot_security_updates_new_repos.disable, dependabot_security_updates_new_repos.enable, dependency_graph.disable, dependency_graph.enable, dependency_graph_new_repos.disable, dependency_graph_new_repos.enable, gist.create, gist.destroy, gist.visibility_change, git_signing_ssh_public_key.create, git_signing_ssh_public_key.delete, integration.create, integration.destroy, integration.remove_client_secret, integration.revoke_all_tokens, integration.revoke_tokens, integration.suspend, integration.transfer, integration.unsuspend, integration_installation.create, integration_installation.destroy, integration_installation.repositories_added, integration_installation.repositories_removed, integration_installation.suspend, integration_installation.unsuspend, integration_installation.version_updated, marketplace_agreement_signature.create, marketplace_listing.approve, marketplace_listing.create, marketplace_listing.redraft, marketplace_listing.reject, oauth_access.create, oauth_access.destroy, oauth_access.regenerate, oauth_access.revoke, oauth_access.update, oauth_application.destroy, oauth_application.generate_client_secret, oauth_application.remove_client_secret, oauth_application.reset_secret, oauth_application.revoke_all_tokens, oauth_application.revoke_tokens, oauth_application.transfer, oauth_authorization.create, oauth_authorization.destroy, oauth_authorization.update, org.add_member, org.advanced_security_disabled_on_all_repos, org.advanced_security_enabled_on_all_repos, org.remove_member, org.security_center_export_code_scanning_metrics, org.security_center_export_coverage, org.security_center_export_overview_dashboard, org.security_center_export_risk, org.update_member, passkey.register, passkey.remove, payment_method.create, payment_method.remove, personal_access_token.access_granted, personal_access_token.access_revoked, personal_access_token.create, personal_access_token.credential_regenerated, personal_access_token.credential_revoked, personal_access_token.destroy, personal_access_token.request_created, personal_access_token.update, profile_picture.update, project.access, project.create, project.delete, project.open, project.update_user_permission, project_collaborator.remove, project_collaborator.update, public_key.create, public_key.unverification_failure, public_key.verification_failure, public_key.verify, repo.access, repo.add_member, repo.add_topic, repo.archived, repo.create, repo.destroy, repo.pages_cname, repo.pages_create, repo.pages_destroy, repo.pages_https_redirect_disabled, repo.pages_https_redirect_enabled, repo.pages_source, repo.remove_member, repo.remove_topic, repo.rename, repo.set_actions_retention_limit, repo.set_default_workflow_permissions, repo.set_fork_pr_workflows_policy, repo.set_workflow_permission_can_approve_pr, repo.temporary_access_granted, repo.transfer, repo.transfer_start, repo.unarchived, repo.update_default_branch, repo.update_member, repository_image.create, repository_image.destroy, security_key.register, security_key.remove, sponsors.agreement_sign, sponsors.sponsor_sponsorship_cancel, sponsors.sponsor_sponsorship_create, sponsors.sponsor_sponsorship_payment_complete, sponsors.sponsor_sponsorship_preference_change, sponsors.sponsor_sponsorship_tier_change, sponsors.sponsored_developer_approve, sponsors.sponsored_developer_create, sponsors.sponsored_developer_disable, sponsors.sponsored_developer_redraft, sponsors.sponsored_developer_request_approval, sponsors.sponsored_developer_tier_description_update, sponsors.sponsored_developer_update_newsletter_send, sponsors.sponsors_patreon_user_create, sponsors.sponsors_patreon_user_destroy, sponsors.update_tier_repository, sponsors.update_tier_welcome_message, sponsors.waitlist_join, sponsors.withdraw_agreement_signature, trusted_device.register, trusted_device.remove, two_factor_authentication.add_factor, two_factor_authentication.disabled, two_factor_authentication.enabled, two_factor_authentication.password_reset_fallback_sms, two_factor_authentication.recovery_codes_regenerated, two_factor_authentication.remove_factor, two_factor_authentication.sign_in_fallback_sms, two_factor_authentication.update_fallback, user.add_email, user.async_delete, user.audit_log_export, user.block_user, user.change_password, user.codespaces_trusted_repo_access_granted, user.codespaces_trusted_repo_access_revoked, user.create, user.create_integration_secret, user.creation_rate_limit_exceeded, user.delete, user.demote, user.destroy, user.failed_login, user.forgot_password, user.hide_private_contributions_count, user.login, user.logout, user.new_device_used, user.promote, user.recreate, user.remove_email, user.remove_integration_secret, user.rename, user.reset_password, user.show_private_contributions_count, user.sign_in_from_unrecognized_device, user.sign_in_from_unrecognized_device_and_location, user.suspend, user.two_factor_challenge_failure, user.two_factor_challenge_success, user.two_factor_recover, user.two_factor_recovery_codes_downloaded, user.two_factor_recovery_codes_printed, user.two_factor_recovery_codes_viewed, user.two_factor_requested, user.unblock_user, user.unsuspend, user.update_integration_secret, user_email.confirm_claim, user_status.destroy, user_status.update, workflows.approve_workflow_job, workflows.reject_workflow_job
UserId *int64 `json:"user_id,omitempty"`
// Present in: 3/334 events – personal_access_token.access_granted, personal_access_token.access_revoked, personal_access_token.request_created
UserProgrammaticAccessId *string `json:"user_programmatic_access_id,omitempty"`
// Present in: 10/334 events – personal_access_token.access_granted, personal_access_token.access_revoked, personal_access_token.create, personal_access_token.credential_regenerated, personal_access_token.credential_revoked, personal_access_token.destroy, personal_access_token.request_cancelled, personal_access_token.request_created, personal_access_token.request_denied, personal_access_token.update
UserProgrammaticAccessName *string `json:"user_programmatic_access_name,omitempty"`
// Present in: 3/334 events – personal_access_token.request_cancelled, personal_access_token.request_created, personal_access_token.request_denied
UserProgrammaticAccessRequestId *int64 `json:"user_programmatic_access_request_id,omitempty"`
// Present in: 47/334 events – checks.auto_trigger_disabled, checks.auto_trigger_enabled, environment.create_actions_secret, environment.create_actions_variable, environment.update_actions_secret, environment.update_actions_variable, gist.create, gist.destroy, gist.visibility_change, org.update_member_repository_creation_permission, repo.access, repo.add_member, repo.archived, repo.create, repo.create_actions_variable, repo.create_integration_secret, repo.destroy, repo.pages_cname, repo.pages_create, repo.pages_destroy, repo.pages_https_redirect_disabled, repo.pages_https_redirect_enabled, repo.pages_private, repo.pages_public, repo.pages_soft_delete, repo.pages_soft_delete_restore, repo.pages_source, repo.remove_member, repo.rename, repo.set_actions_fork_pr_approvals_policy, repo.set_actions_private_fork_pr_approvals_policy, repo.set_actions_retention_limit, repo.set_default_workflow_permissions, repo.set_fork_pr_workflows_policy, repo.set_workflow_permission_can_approve_pr, repo.transfer, repo.transfer_outgoing, repo.transfer_start, repo.unarchived, repo.update_actions_access_settings, repo.update_actions_settings, repo.update_actions_variable, repo.update_default_branch, repo.update_integration_secret, repo.update_member, user.create_integration_secret, user.update_integration_secret
Visibility *string `json:"visibility,omitempty"`
// Present in: 4/334 events – workflows.disable_workflow, workflows.enable_workflow, workflows.pin_workflow, workflows.unpin_workflow
WorkflowId *int64 `json:"workflow_id,omitempty"`
// Present in: 3/334 events – workflows.approve_workflow_job, workflows.delete_workflow_run, workflows.reject_workflow_job
WorkflowRunId *string `json:"workflow_run_id,omitempty"`
}
https://docs.github.com/en/authentication/keeping-your-account-and-data-secure/security-log-events
func (*SecurityLog) GetColumnDescriptions ¶
func (s *SecurityLog) GetColumnDescriptions() map[string]string
type SecurityLogMapper ¶
type SecurityLogMapper struct{}
func (*SecurityLogMapper) Identifier ¶
func (m *SecurityLogMapper) Identifier() string
func (*SecurityLogMapper) Map ¶
func (m *SecurityLogMapper) Map(ctx context.Context, a any, _ ...mappers.MapOption[*SecurityLog]) (*SecurityLog, error)
type SecurityLogTable ¶
type SecurityLogTable struct{}
SecurityLogTable - table for GitHub security logs
func (*SecurityLogTable) EnrichRow ¶
func (t *SecurityLogTable) EnrichRow(row *SecurityLog, sourceEnrichmentFields schema.SourceEnrichment) (*SecurityLog, error)
EnrichRow implements table.Table
func (*SecurityLogTable) GetDescription ¶
func (t *SecurityLogTable) GetDescription() string
func (*SecurityLogTable) GetSourceMetadata ¶
func (t *SecurityLogTable) GetSourceMetadata() ([]*table.SourceMetadata[*SecurityLog], error)
func (*SecurityLogTable) Identifier ¶
func (t *SecurityLogTable) Identifier() string
Identifier implements table.Table
Source Files
Click to show internal directories.
Click to hide internal directories.