Skip to content

Elevated GitHub App Permissions

Checks for GitHub organizations with third-party applications that have elevated permissions. An application is considered to have elevated permissions if it has write access to any of the following scopes:

  • organization_administration
  • members
  • administration
  • organization_custom_roles
  • organization_hooks
  • contents
  • deployments
  • environments
  • packages
  • organization_packages
  • repository_hooks
  • organization_self_hosted_runners
  • actions
  • workflows
  • secrets