Permission levels for maintainer security advisories

The actions you can take in a maintainer security advisory depend on whether you have admin or write permissions to the advisory.

Anyone with admin permissions to a repository automatically has admin permissions to all security advisories in that repository. People with admin permissions to a security advisory can add collaborators, who have write permissions to the advisory. For more information, see "Adding a collaborator to a maintainer security advisory."

Action Write permissions Admin permissions
See a draft advisory X X
Add collaborators to the advisory (see "Adding a collaborator to a maintainer security advisory") X
Create a temporary private fork in the advisory (see "Collaborating in a temporary private fork to resolve a security vulnerability") X
Add changes to a temporary private fork in the advisory (see "Collaborating in a temporary private fork to resolve a security vulnerability") X X
Create pull requests in a temporary private fork (see "Collaborating in a temporary private fork to resolve a security vulnerability") X X
Merge changes in the advisory (see "Collaborating in a temporary private fork to resolve a security vulnerability") X
Add and edit metadata in the advisory (see "Publishing a maintainer security advisory") X X
Publish the advisory (see "Publishing a maintainer security advisory") X
Close the advisory X

Ask a human

Can't find what you're looking for?

Contact us