Releases: integrations/terraform-provider-github
v6.9.0
What's Changed
🚀 New Features
- feat: Adds enterprise settings resources to the provider by @nickfloyd in #2852
- feat: Add values_editable_by support to github_organization_custom_properties by @markszabo in #2931
- feat: Add functionality to update github_branch_default instead of forcing replacement by @thisispr in #2911
- feat: Align environment branch policy support by @stevehipwell in #2932
- feat: Add github_actions_hosted_runner resource by @austenstone in #2893
- feat: Refactor workflows by @stevehipwell in #2946
🐛 Bugfixes
- fix HTTP 422 error in github_organization_settings resource by @netflash in #2807
- fix(github_repository_file): delete error handling and codesigning by @ivanmartos in #2736
- fix required_code_scanning missing from terraform state by @stricklerxc in #2701
- fix: do not update/create rulesets on archived repository by @scadu in #2460
- fix: change
forktoTypeStringand add conditional ForceNew by @diofeher in #2959 - fix: missing error returns by @nickfloyd in #2962
- fix: Fix org roles implementation by @stevehipwell in #2968
🪦 Deprecations
- fix: make repository argument required by @mikutas in #2603
- fix(organization_ruleset): handle other error responses by @skeggse in #2705
🛠️ Maintenance
- chore(actions): Add release stack and extra validation test on Release (tag event) by @ViacheslavKudinov in #2904
- chore: Integrate v6.8.3 into main by @nickfloyd in #2902
- chore: Deprecate duplicate org team role resources by @stevehipwell in #2933
- chore: Update security and analysis by @Brink2Three in #2935
- chore: Update golangci-lint to v2 by @stevehipwell in #2864
- chore: Refactor base url logic by @stevehipwell in #2951
- build(deps): bump the github-actions group with 2 updates by @dependabot[bot] in #2923
- build(deps): bump golang.org/x/crypto from 0.43.0 to 0.45.0 by @dependabot[bot] in #2927
- build(deps): bump actions/checkout from 5.0.1 to 6.0.0 by @dependabot[bot] in #2939
- build(deps): bump actions/setup-go from 6.0.0 to 6.1.0 in the github-actions group by @dependabot[bot] in #2938
- build(deps): bump the gomod group across 1 directory with 4 updates by @dependabot[bot] in #2942
- build(deps): bump github/codeql-action from 4.31.4 to 4.31.5 in the github-actions group by @dependabot[bot] in #2956
New Contributors
- @Brink2Three made their first contribution in #2935
- @markszabo made their first contribution in #2931
- @thisispr made their first contribution in #2911
- @austenstone made their first contribution in #2893
- @netflash made their first contribution in #2807
- @ivanmartos made their first contribution in #2736
- @stricklerxc made their first contribution in #2701
- @skeggse made their first contribution in #2705
- @scadu made their first contribution in #2460
- @diofeher made their first contribution in #2959
Full Changelog: v6.8.0...v6.9.0
Contributors
Assets 20
- 7.94 MB
2025-12-05T20:20:45Z - 7.42 MB
2025-12-05T20:20:47Z - 7.27 MB
2025-12-05T20:20:45Z - 7.73 MB
2025-12-05T20:20:44Z - 7.29 MB
2025-12-05T20:20:46Z - 7.05 MB
2025-12-05T20:20:46Z - 7.29 MB
2025-12-05T20:20:45Z - 7.74 MB
2025-12-05T20:20:47Z - 7.3 MB
2025-12-05T20:20:45Z - 7.07 MB
2025-12-05T20:20:47Z -
2025-12-05T20:08:42Z -
2025-12-05T20:08:42Z - Loading
v6.8.3
v6.8.2
This merge brings the following enhancements from v6.7.5:
- Added destroy_on_drift field to both github_actions_secret and github_actions_organization_secret
- Improved drift detection logic with configurable behavior
- Added schema migrations for backward compatibility
- Enhanced test coverage for drift detection scenarios
- Fixed ForceNew field configurations
Full Changelog: v6.8.1...v6.8.2
v6.8.1
v6.8.0
What's Changed
🚀 New Features
- fix/feature: Adds support for max_file_size, max_file_path_length, file_extension_restriction, and unknown rulesets for repos and orgs by @nickfloyd in #2821
- feat: Handle error management on resources when dealing with archived repos. by @nickfloyd in #2837
- feat: Update removal operations for related resources to now gracefully handle deleting archived repositories by @nickfloyd in #2844
- feat: support workflow permissions in repository by @M0NsTeRRR in #2309
- feat: implement missing data source github_actions_environment_public_key by @nobbs in #2500
- feat: Adds migration for destory-on-drift for actions organization secret to prevent state from getting out of sync with the schema by @nickfloyd in #2820
- feat: Adds DiffSuppressFunc and DiffSuppressOnRefresh to resources that have etag properties to suppress etag-related diffs by @nickfloyd in #2840
- feat: Max per page by @dee-kryvenko in #2703
- feat(core): add fork functionality by @hminaee-tc in #2678
🐛 Bugfixes
- fix: Add destroy-on-drift property to the GitHub Action Secret resource schema by @nickfloyd in #2832
- fix: error when updating ruleset without bypass actors by @dblinkhorn in #2824
- fix(resource/github_organization_custom_properties): allow for import by @pippitt in #2834
- fix: Support for Github Environment Secrets' Lifecycle Ignore Changes by @bshore-bf in #2651
- fix: update of github release by @findmyname666 in #2350
- fix: commit signoff is enforced by the organization by @steveteuber in #2763
- fix: Repository Custom Properties Refresh by @SharpEdgeMarshall in #2691
- fix: Check current default branch before modifying by @stevehipwell in #2863
- fix: import command syntax for GitHub custom property documentation by @deiga in #2871
- fix(issue-2873): send empty slice for bypass_actors to avoid 422 on null by @VyacheslavPerfilyev in #2875
- fix(transport): change rate limit log messages from DEBUG to WARN level by @tdabasinskas in #2687
🛠️ Maintenance
- maint: gofmt clean up by @nickfloyd in #2888
- maint: Update to go-github v67 by @nickfloyd in #2810
- build(deps): bump github/codeql-action from 3.28.0 to 4.31.0 by @dependabot[bot] in #2811
- build(deps): bump actions/checkout from 4.2.2 to 5.0.0 by @dependabot[bot] in #2812
- build(deps): bump actions/stale from 9.0.0 to 10.1.0 by @dependabot[bot] in #2813
- build(deps): bump actions/setup-go from 5.2.0 to 6.0.0 by @dependabot[bot] in #2814
- build(deps): bump peter-evans/create-or-update-comment from 4 to 5 by @dependabot[bot] in #2815
- build(deps): update several GitHub Actions to the next major versions by @ViacheslavKudinov in #2816
- build(deps): bump github/codeql-action from 4.31.0 to 4.31.2 in the github-actions group by @dependabot[bot] in #2860
- chore(Actions): Skip to run "Add issue to project" workflow on the forks by @ViacheslavKudinov in #2833
- chore: Tune Goreleaser config and workflow to address warnings by @ViacheslavKudinov in #2835
- chore(actions): Add scan of Actions workflows by CodeQL by @ViacheslavKudinov in #2859
- chore(actions): Add workflow that runs Terraform configuration validation by @ViacheslavKudinov in #2887
- chore(actions): Adds labeler Action to automatically add labels on PR:s by @ViacheslavKudinov in #2853
- chore(actions): Disable to run "Issue/PR response" workflow on forks by @ViacheslavKudinov in #2854
- chore(Actions): disable label synchronization in pull request labeler by @ViacheslavKudinov in #2879
- chore: Update pull request template checklist by @nickfloyd in #2827
📝 Documentation
- docs: Add destroy_on_drift docs to organization secret by @nickfloyd in #2825
- docs(github_repository_tag_protection): Remove documentation for the resource no longer supported by provider since v6.4.0 by @ViacheslavKudinov in #2826
- docs(github_organization_custom_role): Fix typo organization(_)repository by @kohbis in #2831
- docs: Adds do_not_enforce_on_create option for github_repository_ruleset docs by @nenosrep in #2667
- docs: Fix doc to revert wrong file deletion by @ViacheslavKudinov in #2847
New Contributors
- @nenosrep made their first contribution in #2667
- @kohbis made their first contribution in #2831
- @deiga made their first contribution in #2871
- @VyacheslavPerfilyev made their first contribution in #2875
- @M0NsTeRRR made their first contribution in #2309
- @bshore-bf made their first contribution in #2651
- @nobbs made their first contribution in #2500
- @findmyname666 made their first contribution in #2350
- @steveteuber made their first contribution in #2763
- @tdabasinskas made their first contribution in #2687
- @hminaee-tc made their first contribution in #2678
Full Changelog: v6.7.0...v6.8.0
Contributors
Assets 19
v6.7.5
v6.7.4
v6.7.4
This patch appropriately handles the cases when a Terraform resource has an Update function defined (which was recently added), the Terraform SDK requires that any field that can change must either have ForceNew: true (meaning changes require resource recreation) or for that field to be a computed-only field.
The destroy_on_drift field is a provider config setting that controls how drift detection works - it's not a field that maps to the GitHub API. When implementations try to change this field Terraform will execute the plan properly but fail on the apply because the Update function didn't know how to handle the destroy_on_drift change.
Lastly reads now handle setting encrypted_value and plaintext_value to nil to trigger an update when the "stored" update dates do not match.
Full Changelog: v6.7.3...v6.7.4
v6.7.3
v6.7.3
This patch addresses the issue where the Update function was missed during the cherry pick for github_actions_secret resource.
Tests were also added to avoid regressions in the future.
Full Changelog: v6.7.2...v6.7.3
v6.7.2
v6.7.2
Note: This patch contains the addition of the destroy_on_drift property to github_actions_secret resource because the exact same issue was present there as well.
Bug Fixes
Fixed drift detection bug that caused "Provider produced inconsistent result" errors in github_actions_organization_secret and github_actions_secret resources. The bug occurred when secrets were modified externally - the timestamp wasn't being updated after drift detection, causing infinite loops of false positive drift detection. | #2832
Features
Added destroy_on_drift property to github_actions_secret resource (repository-level secrets), and matches the functionality already available in github_actions_organization_secret. Also includes proper schema migration from v0 to v1 and ensures the property defaults to true for backward compatibility. | #2832
Full Changelog: v6.7.1...v6.7.2