Conversation
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Kevin Heis <heiskr@users.noreply.github.com>
…[GA] (#60102) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Isaac Brown <101839405+isaacmbrown@users.noreply.github.com> Co-authored-by: Carlin Cherry <61124041+carlincherry@users.noreply.github.com>
github-actions
bot
added
the
triage
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| // Try the brotli-compressed variant first (used in staging), then plain JSON. | ||
| async function loadCategoryFile(basePath: string): Promise<RestOperationCategory> { | ||
| try { | ||
| const compressed = await fsPromises.readFile(`${basePath}.br`) |
| return JSON.parse(decompressed.toString()) as RestOperationCategory | ||
| } catch { | ||
| // .br missing, corrupt, or unreadable — fall back to plain JSON | ||
| const raw = await fsPromises.readFile(basePath, 'utf-8') |
Contributor
There was a problem hiding this comment.
Pull request overview
Syncs public/private repos by updating REST API metadata, removing the legacy topics frontmatter field from page context/UI, and adding docs/feature gates for Dependabot malware alerts plus refreshed Actions Runner Controller (ARC) docs.
Changes:
- Remove
topicsfrom frontmatter schema, page context, and landing UI (topic chip rendering + keywords meta). - Add Dependabot malware alerts feature flag, new docs pages/reusables, and integrate into existing supply chain/security docs.
- Restructure ARC docs (new landing + updated how-to pages) and adjust REST transformer to fetch category-scoped REST data.
Reviewed changes
Copilot reviewed 113 out of 607 changed files in this pull request and generated 4 comments.
Show a summary per file
| File | Description |
|---|---|
| src/rest/data/fpt-2022-11-28/private-registries.json | Adds generated REST operation data for private registries. |
| src/rest/data/fpt-2022-11-28/meta.json | Adds generated REST operation data for meta endpoints. |
| src/rest/data/fpt-2022-11-28/markdown.json | Adds generated REST operation data for markdown endpoints. |
| src/rest/data/fpt-2022-11-28/licenses.json | Adds generated REST operation data for licenses endpoints. |
| src/rest/data/fpt-2022-11-28/interactions.json | Adds generated REST operation data for interactions endpoints. |
| src/rest/data/fpt-2022-11-28/gitignore.json | Adds generated REST operation data for gitignore endpoints. |
| src/rest/data/fpt-2022-11-28/deploy-keys.json | Adds generated REST operation data for deploy keys endpoints. |
| src/rest/data/fpt-2022-11-28/dependency-graph.json | Adds generated REST operation data for dependency graph endpoints. |
| src/rest/data/fpt-2022-11-28/credentials.json | Adds generated REST operation data for credential revocation endpoint. |
| src/rest/data/fpt-2022-11-28/codes-of-conduct.json | Adds generated REST operation data for codes of conduct endpoints. |
| src/landings/components/ProductGuidesContext.tsx | Drops topics from landing guide context shape. |
| src/landings/components/ArticleCard.tsx | Removes topic-label UI rendering from article cards. |
| src/landings/components/ArticleCard.module.scss | Removes styles that only supported the deleted topics UI. |
| src/frame/lib/page.ts | Stops propagating topics from page frontmatter into included guides. |
| src/frame/lib/frontmatter.ts | Removes topics from the frontmatter JSON schema. |
| src/frame/components/context/MainContext.tsx | Removes topics from main page context. |
| src/frame/components/DefaultLayout.tsx | Removes keywords meta tag based on topics. |
| src/fixtures/fixtures/content/webhooks/webhook-events-and-payloads.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/webhooks/index.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/rest/authentication/permissions-required-for-github-apps.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/rest/authentication/permissions-required-for-fine-grained-personal-access-tokens.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/rest/authentication/endpoints-available-for-github-app-user-access-tokens.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/rest/authentication/endpoints-available-for-github-app-installation-access-tokens.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/rest/authentication/endpoints-available-for-fine-grained-personal-access-tokens.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/rest/actions/artifacts.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/pages/quickstart.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/pages/index.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/organizations/keeping-your-organization-secure/managing-security-settings-for-your-organization/index.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/organizations/keeping-your-organization-secure/managing-security-settings-for-your-organization/audit-log-events-for-your-organization.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/organizations/keeping-your-organization-secure/index.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/organizations/index.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/get-started/start-your-journey/hello-world.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/get-started/start-your-journey/api-article-body-test-page.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/codespaces/index.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/codespaces/guides.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/code-security/guides.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/code-security/getting-started/securing-your-organization.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/code-security/getting-started/quickstart.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/code-security/getting-started/index.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/authentication/keeping-your-account-and-data-secure/security-log-events.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/authentication/keeping-your-account-and-data-secure/index.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/authentication/index.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/admin/monitoring-activity-in-your-enterprise/reviewing-audit-logs-for-your-enterprise/index.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/admin/monitoring-activity-in-your-enterprise/reviewing-audit-logs-for-your-enterprise/audit-log-events-for-your-enterprise.md | Removes frontmatter topics from fixtures. |
| src/fixtures/fixtures/content/admin/monitoring-activity-in-your-enterprise/index.md | Removes frontmatter topics from fixtures. |
| src/content-linter/tests/unit/journey-tracks.ts | Updates linter test content by removing topics frontmatter. |
| src/content-linter/tests/integration/lint-cli.ts | Updates linter fixtures by removing topics frontmatter. |
| src/content-linter/tests/fixtures/video-transcripts/index.md | Updates linter fixture by removing topics frontmatter. |
| src/content-linter/tests/fixtures/landing-carousels/valid-landing.md | Updates linter fixture by removing topics frontmatter. |
| src/content-linter/tests/fixtures/landing-carousels/subdir/article-three.md | Updates linter fixture by removing topics frontmatter. |
| src/content-linter/tests/fixtures/landing-carousels/no-recommended.md | Updates linter fixture by removing topics frontmatter. |
| src/content-linter/tests/fixtures/landing-carousels/no-carousels.md | Updates linter fixture by removing topics frontmatter. |
| src/content-linter/tests/fixtures/landing-carousels/invalid-paths.md | Updates linter fixture by removing topics frontmatter. |
| src/content-linter/tests/fixtures/landing-carousels/invalid-non-landing.md | Updates linter fixture by removing topics frontmatter. |
| src/content-linter/tests/fixtures/landing-carousels/duplicate-recommended.md | Updates linter fixture by removing topics frontmatter. |
| src/content-linter/tests/fixtures/landing-carousels/duplicate-carousels.md | Updates linter fixture by removing topics frontmatter. |
| src/content-linter/tests/fixtures/landing-carousels/article-two.md | Updates linter fixture by removing topics frontmatter. |
| src/content-linter/tests/fixtures/landing-carousels/article-one.md | Updates linter fixture by removing topics frontmatter. |
| src/content-linter/tests/fixtures/journey-tracks/valid-journey.md | Updates linter fixture by removing topics frontmatter. |
| src/content-linter/tests/fixtures/journey-tracks/non-journey-layout.md | Updates linter fixture by removing topics frontmatter. |
| src/content-linter/tests/fixtures/journey-tracks/no-journey-tracks.md | Updates linter fixture by removing topics frontmatter. |
| src/content-linter/tests/fixtures/journey-tracks/invalid-paths.md | Updates linter fixture by removing topics frontmatter. |
| src/content-linter/tests/fixtures/journey-tracks/duplicate-ids.md | Updates linter fixture by removing topics frontmatter. |
| src/article-api/transformers/rest-transformer.ts | Switches REST data loading to category-scoped fetch. |
| src/app/lib/main-context-adapter.ts | Removes topics from minimal main context adapter output. |
| data/variables/product.yml | Adds product variables for Dependabot malware alerts naming. |
| data/reusables/repositories/sidebar-dependabot-alerts.md | Updates Dependabot sidebar navigation steps with feature gating. |
| data/reusables/gated-features/dependabot-malware-alerts.md | Adds gating reusable for malware alerts feature access. |
| data/reusables/dependabot/view-malware-alerts.md | Adds reusable steps for navigating to malware alerts view. |
| data/reusables/dependabot/no-prs-for-malware-alerts.md | Adds note reusable clarifying PR behavior for malware alerts. |
| data/reusables/dependabot/navigate-to-repo-level-dependabot-alert-rules.md | Updates navigation wording/aria label for Dependabot rules UI. |
| data/reusables/dependabot/filter-alerts-step.md | Adds reusable step for filtering/searching alerts. |
| data/reusables/dependabot/dependabot-github-preset-auto-triage-rules.md | Generalizes preset rules reusable (no longer alerts-only scoped). |
| data/reusables/dependabot/dependabot-alert-actions-semver.md | Generalizes semver limitation reusable (removes redundant product name). |
| data/reusables/actions/self-hosted-runner-labels-runs-on.md | Converts ARC limitation into an admonition note (format change). |
| data/reusables/actions/actions-runner-controller-labels.md | Updates ARC labeling guidance, including scale set labels. |
| data/features/dependabot-malware-alerts.yml | Introduces feature flag versions for Dependabot malware alerts. |
| content/rest/copilot/copilot-coding-agent-management.md | Removes topics frontmatter from REST content. |
| content/copilot/concepts/agents/about-third-party-agents.md | Clarifies enabling policies and VS Code local/cloud agent applicability. |
| content/code-security/reference/security-at-scale/available-filters-for-security-overview.md | Documents Dependabot vulnerabilities vs malware alert views under feature gate. |
| content/code-security/how-tos/secure-your-supply-chain/secure-your-dependencies/index.md | Adds malware-alerts config page to the dependency security section. |
| content/code-security/how-tos/secure-your-supply-chain/secure-your-dependencies/configure-malware-alerts.md | Adds new how-to for enabling Dependabot malware alerts. |
| content/code-security/how-tos/secure-your-supply-chain/manage-your-dependency-security/using-github-preset-rules-to-prioritize-dependabot-alerts.md | Reworks preset rules instructions and terminology. |
| content/code-security/how-tos/secure-your-supply-chain/manage-your-dependency-security/customizing-auto-triage-rules-to-prioritize-dependabot-alerts.md | Adds malware-alerts PR limitation note + clarifies rule scope wording. |
| content/code-security/how-tos/secure-at-scale/configure-organization-security/establish-complete-coverage/creating-a-custom-security-configuration.md | Adds malware alerts option to security configuration docs under gate. |
| content/code-security/how-tos/secure-at-scale/configure-enterprise-security/establish-complete-coverage/creating-a-custom-security-configuration-for-your-enterprise.md | Adds malware alerts option to enterprise security configuration docs under gate. |
| content/code-security/how-tos/manage-security-alerts/manage-dependabot-alerts/manage-malware-alerts.md | Adds new how-to for viewing/dismissing/reopening malware alerts. |
| content/code-security/how-tos/manage-security-alerts/manage-dependabot-alerts/index.md | Adds malware alerts management page to section navigation. |
| content/code-security/getting-started/github-security-features.md | Adds malware alerts mention to overview under feature gate. |
| content/code-security/concepts/supply-chain-security/index.md | Adds malware alerts concept page to supply chain concepts navigation. |
| content/code-security/concepts/supply-chain-security/dependabot-malware-alerts.md | Adds new concept page defining malware alerts and limitations. |
| content/code-security/concepts/supply-chain-security/about-supply-chain-security.md | Adds malware alerts explanation and availability under feature gate. |
| content/code-security/concepts/supply-chain-security/about-dependabot-auto-triage-rules.md | Extends auto-triage rules concept to include malware alerts, adds next steps. |
| content/code-security/concepts/supply-chain-security/about-dependabot-alerts.md | Updates limitations/further reading for malware alerts feature gate. |
| content/billing/concepts/product-billing/github-actions.md | Minor copy edit for clarity (removes UI-specific parenthetical). |
| content/admin/configuring-settings/configuring-github-connect/enabling-dependabot-for-your-enterprise.md | Documents malware alerts behavior on GHES under feature gate. |
| content/actions/tutorials/use-actions-runner-controller/index.md | Updates ARC tutorials landing and simplifies journey track guide list. |
| content/actions/tutorials/use-actions-runner-controller/get-started.md | Renames quickstart to get-started and adjusts redirects/metadata. |
| content/actions/how-tos/manage-runners/use-actions-runner-controller/use-arc-in-a-workflow.md | Moves ARC workflow usage page to how-tos; adds scale set label examples. |
| content/actions/how-tos/manage-runners/use-actions-runner-controller/index.md | Adds new ARC how-to landing under “Manage runners”. |
| content/actions/how-tos/manage-runners/use-actions-runner-controller/deploy-runner-scale-sets.md | Moves deploy page to how-tos; adjusts wording for label routing. |
| content/actions/how-tos/manage-runners/use-actions-runner-controller/authenticate-to-the-api.md | Moves auth page to how-tos; updates intro + adds tutorial redirect. |
| content/actions/how-tos/manage-runners/self-hosted-runners/use-in-a-workflow.md | Removes outdated ARC multi-label limitation from self-hosted runner docs. |
| content/actions/how-tos/manage-runners/self-hosted-runners/apply-labels.md | Removes outdated ARC limitation note from labels doc. |
| content/actions/how-tos/manage-runners/index.md | Adds ARC section to runners how-to navigation. |
| content/actions/concepts/runners/actions-runner-controller.md | Updates ARC concept content and adds a next-step link to new get-started tutorial. |
| Self-hosted runners may have the `self-hosted` label. When setting up a self-hosted runner, by default we will include the label `self-hosted`. You may pass in the `--no-default-labels` flag to prevent the self-hosted label from being applied. Labels can be used to create targeting options for runners, such as operating system or architecture, we recommend providing an array of labels that begins with `self-hosted` (this must be listed first) and then includes additional labels as needed. When you specify an array of labels, jobs will be queued on runners that have all the labels that you specify. | ||
|
|
||
| Note that Actions Runner Controller does not support multiple labels and does not support the `self-hosted` label. | ||
| >[!NOTE] {% data variables.product.prodname_actions_runner_controller %} does not support the `self-hosted` label. |
Comment on lines
+4
to
+6
| 1. In the "Vulnerability alerts" sidebar of security overview, click **{% data variables.product.prodname_dependabot %}**. If this option is missing, it means you don't have access to security alerts and need to be given access. For more information, see [AUTOTITLE](/repositories/managing-your-repositorys-settings-and-features/enabling-features-for-your-repository/managing-security-and-analysis-settings-for-your-repository#granting-access-to-security-alerts). | ||
|
|
||
| {% else %} | ||
| {% endif %} | ||
|  |
Comment on lines
+11
to
+13
| - /deploy-runner-scale-sets | ||
| - /use-arc-in-a-workflow | ||
| contentType: how-tos |
Comment on lines
+29
to
+30
| 1. {% data variables.product.prodname_actions_runner_controller %} is installed using the supplied Helm charts, and the controller manager pod is deployed in the specified namespace. A new AutoScalingRunnerSet resource is deployed via the supplied Helm charts or a customized manifest file. The AutoScalingRunnerSet Controller calls the {% data variables.product.github %}'s API to fetch the runner group ID that the runner scale set will belong to. | ||
| 1. The AutoScalingRunnerSet Controller calls the API one more time to either fetch or create a runner scale set in the {% data variables.product.prodname_actions %} service before creating the Runner ScaleSet Listener resource. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This is an automated pull request to sync changes between the public and private repos.
Our bot will merge this pull request automatically.
To preserve continuity across repos, do not squash this pull request.