Good question! Rest and GraphQL support will go live in a couple weeks with our GA release

Great! Thank you for the quick response!

Hello, we are using this funtionality, do you now, When do you plan to deploy the GA that adds this functionality to the API?

@GuillermoWS API functionalist will be added this week 🙂

API functionality is now live

Yes, the file exists at the given path for the selected ref.

Interestingly, I have got it working when selecting a branch, e.g. main.

It seems to error but only when I select a tag (the tag definitely exists).

Seems like an unexpected behavior, I've filed an internal issue to check it out, and see if its a bug on our end 👍

@jon-ruckwood the team pushed a fix here and selecting a tag should be unblocked. Please let us know if you still have problems with this setup

I can now select a tag and add the workflow successfully to the ruleset.

However, when I click "Save changes" I get a "Failed to Update" error message. So I'm still unable to use a tag or pin to that tag's commit sha.

@jon-ruckwood I'm not able to reproduce this problem. Can you verify that the file exists at that location on that tag? Is it still a generic error message?

It does not. For now, the scope of this feature is within a single organization

Thank you. Any roadmap to enable it outside of the organization?

Hi @dstrzelec - There are some repository visibility details that are important and will hopefully help:

The workflow file needs to be in a repository that matches the visibility of the repositories you want to run it in. Specifically, a public workflow can run on any repository in your organization, an internal workflow can only run on internal and private repositories, and a private workflow can only run on private repositories. For more information, see "About workflows."

Please check to be sure the repos you're working with match the visibility rules listed above. Let us know if this solves the issue for you.

Thanks a lot for the response! Do you know how quickly these additional triggers would be introduced? Specifically, if these will be available before required workflows are deprecated on the October 18 deadline?

@cgundy NP! To be clear, you will continue to have access after the 18th. We are continuing to work on migrating users but aren't quite ready yet. We will not remove access to the old feature until we have a majority of users migrated and have given remaining users advanced notice of the final deprecation.

We strongly believe that pull_request_target will be available with repository rules before we deprecate the old feature. Once we finalize the date I will share it out. Until then, you don't need to worry about your existing Required Workflows.

Perfect, thanks for clarifying! Will keep my eye out for any updates. 👍

Hi @cgundy - we added support for pull_request_target today! Let us know if you have any questions. Here's the changelog announcement

Thanks so much! This is a huge help and unblocks our team!

This is a deliberate choice, and we don't intend to support workflows outside of the the .github/workflows directory, right now an if condition is the best way of handling things I think. We may revisit this if it turns out to be a major pain point, so we are listening to this feedback 👍

In that case, the UX should be more clear about this; why even let me input a path, if I can only choose from .github/workflows anyway?

This also means that the workflow will run on PRs in the repo that hosts it, but it might be irrelevant to that repo? It's not a major pain point, though.

I do think that's a great potential UI enhancement, I'll surface it in the right places 👍

Thanks @beeequeue we are tracking this and working on an improved experience

Hi @beeequeue, we recently rolled out a change to improve this experience so that only one status check will be added per ruleset workflow 😄 Thanks for the feedback!

thank you for the response!

Hi @dexterorion - we just announced support for pull_request_target. Let us know if you have any questions!

hi @tonyjcamp

you the best! I will try and let you know

thank you

hi there

I am testing the use of pull_request_target and I am probably missing something, but I thought it worth asking

My required workflow triggers when running a Pull Request, using pull_request_target

Lets say the PR is from branch my-feature to xyz

What are the expected values for:

• github.base_ref
• github.head_ref

I suppose github.head_ref should be my-feature and github.base_ref should be xyz... right?

In my case, head looks fine, but base points to main every time.
Am I doing something wrong? Or my understanding regarding which information I should see is incorrect?

Also, I thought I misunderstood the use of github.base_ref and tried to get this info from a more specific place:

• github.event.pull_request.base.ref

still showing main

Thanks in advace

Hi @dexterorion, thanks for trying this out!

In the scenario you described, I would expect github.head_ref to be my-feature and github.base_ref to be xyz. The base_ref should only be main if the PR is targeting main branch.

I tested this out on my end and it worked as expected. If you'd like, you can reach out to [email protected] and we can look further into your workflow to figure out what's going on 🙂

I'm sorry but push is not supported at this time.

Would it be possible (or is it discussed) to add more types of triggers?

Example: in our company, we have a shared set of workflows for building applications. These are now distributed (ie. pushed) to individual repositories. These workflows handle both the PR validation (on: pull_request) as well as building/releasing the application after merge (e.g. on: push to main or on: pull_request closed/merged)

It would be great if we could capture both of these cases in such a system. Then the entire CI/CD process could effectively be offloaded to rulesets without the need to distribute workflows to individual repositories.

Hi @dvaske 👋 - we don't have any immediate plans to add triggers at this time but we do see the feedback in this area growing. I'd love to learn more about your use cases if you don't mind sharing!

Sure, @tonyjcamp here is the quick use case.

In our setup we have multiple git repositories with different components, but all the different repositories are required for a build, and often/sometimes changes or refacs can span multiple components or often multiple repositories.
We also have an requirement which states that a review must be made by a person who is in an "approver group" this group is just an AD group where we look up members by means of an action.

We therefore have a lot of custom actions to combine pull-requests across repositories.
To merge a PR builds of cause needs to pass, and an the PR bust be approves as descibed above. We therefore depend on the status event and the pull_request_review to trigger merges across all repositories once all pull requests is reviewed and approved and the build status is ✅

For now this has been configured for every single repository, but with the rulesets it would be possible to just have it in one place.

Thank you!

We do not currently support non-default activity types. For pull_request, default activity types are opened, synchronize, and reopened. We are planning to add other activity types, as we have received feedback from other customers as well that they want to use other activity types.

Thanks for the reply! Please add +1 from me to the other activity types feature request :)

Will do! Thank you for the feedback!

I guess this explains:
https://github.com/orgs/community/discussions/67754#discussioncomment-7844416

Yes, we are planning to add other activity types. Thank you for your feedback!

Hi @amoralesc - thank you for sharing this feedback. It's not something we have plans to solve in the near term (next few quarters) but we have plans to discuss this in the future and decide if we will support it.