feat: add permissions support to trust commands#9248
Merged
Conversation
Add --allow-publish and --allow-stage-publish flags to trust create operations. At least one permission flag is now required when establishing trust configurations. - Add PERMISSIONS constants for permission values - Add --allow-staged-publish as alias for --allow-stage-publish - Include permissions in request body and display output - Update tests and completion snapshots for new flags Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
wraithgar
reviewed
Apr 16, 2026
wraithgar
reviewed
Apr 16, 2026
karenjli
reviewed
Apr 16, 2026
owlstronaut
reviewed
Apr 29, 2026
owlstronaut
requested changes
May 18, 2026
- Remove redundant alias fallback for allow-stage-publish flag - Shorten permission error message to match declarative style - Remove unused PERMISSIONS export - Add permission flags to usage strings for all providers - Update test regex to match new error message Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Document the --allow-publish and --allow-stage-publish flags that are required when creating trust configurations. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
owlstronaut
approved these changes
May 19, 2026
nishantms
approved these changes
May 20, 2026
Contributor
|
🎉 Backport to |
reggi
added a commit
that referenced
this pull request
May 20, 2026
Backport of #9248 to `release/v11`. Co-authored-by: Tea Reggi <reggi@github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
5 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Adds permission flags to trust create operations. Users must now specify at least one of
--allow-publishor--allow-stage-publish(alias:--allow-staged-publish) when creating trust configurations.Changes
--allow-publishand--allow-stage-publishflags to all trust provider commands (GitHub, GitLab, CircleCI)PERMISSIONSconstants for permission valuesRelated