[Feature Request] GitHub Advanced Security

[tjcorr]

Support for GitHub Advanced Security and Secret Scanning.

The current repository resource does not support the parameter: security_and_analysis which is used to enable both GHAS and secret scanning on a repository:

Specify which security and analysis features to enable or disable. For example, to enable GitHub Advanced Security, use this data in the body of the PATCH request: {"security_and_analysis": {"advanced_security": {"status": "enabled"}}}. If you have admin permissions for a private repository covered by an Advanced Security license, you can check which security and analysis features are currently enabled by using a GET /repos/{owner}/{repo} request.

This parameter is already supported in the go library with https://github.com/google/go-github/issues/2132 .

[cfisher281]

+1 I could use this now.

[lagerfeuer]

any news on this?

[skumarnara]

BUMP..........

[andrew-lethbridge-vgh]

Could also really use this.

[jwfh]

This would be a useful feature.

[Dilfer]

Would really like this feature. Right now our repo creation process is not fully automatable without this change to the provider.

[kuhlman-labs]

https://github.com/integrations/terraform-provider-github/pull/1298 allows us to set the GHAS settings on an org level. I will investigate how to implement this at the repo level.

[kuhlman-labs]

There was an additional field added to the Security and Analysis block to configure secret scanning push protection. I have a PR open https://github.com/google/go-github/pull/2476 to add the field and then I can configure the repository resource.

[andrew-lethbridge-vgh]

@kuhlman-labs you are a scholar and a gentleman. This is exciting news!

[kuhlman-labs]

PR has been submitted: https://github.com/integrations/terraform-provider-github/pull/1304

[Luis-3M]

Looking forward to this one 🚀

[kuhlman-labs]

This feature has been merged, @kfcampbell / @nickfloyd this Issue can be closed.