Merge branch 'main' of github.com:github/docs-internal into support-conditionals-in-sublanding-fm

Author: sarahs

.github/workflows/check-for-spammy-issues.yml

@@ -65,3 +65,14 @@ jobs:
               issue_number: issue.number,
               body: "This issue appears to have been opened accidentally. I'm going to close it now, but feel free to open a new issue or ask any questions in [discussions](https://github.com/github/docs/discussions)!"
             });
+
+            // Add the issue to the Done column on the triage board
+            try {
+              await github.projects.createCard({
+                column_id: 11167427,
+                content_id: context.payload.issue.id,
+                content_type: "Issue"
+              });
+            } catch (error) {
+              console.log(error);
+            }

content/developers/webhooks-and-events/securing-your-webhooks.md

@@ -94,4 +94,4 @@ Your language and server implementations may differ from this example code. Howe
 
 * Using a plain `==` operator is **not advised**. A method like [`secure_compare`][secure_compare] performs a "constant time" string comparison, which helps mitigate certain timing attacks against regular equality operators.
 
-[secure_compare]: http://rubydoc.info/github/rack/rack/master/Rack/Utils.secure_compare
+[secure_compare]: https://rubydoc.info/github/rack/rack/master/Rack/Utils:secure_compare

content/github/writing-on-github/creating-gists.md

@@ -33,7 +33,7 @@ If your site administrator has disabled private mode, you can also use anonymous
 You'll receive a notification when:
 - You are the author of a gist.
 - Someone mentions you in a gist.
-- You subscribe to a gist, by clicking **Subscribe** at the top any gist.
+- You subscribe to a gist, by clicking **Subscribe** at the top of any gist.
 
 {% if currentVersion == "free-pro-team@latest" or enterpriseServerVersions contains currentVersion %}
 
@@ -55,13 +55,15 @@ Gist supports mapping GeoJSON files. These maps are displayed in embedded gists,
 
 ### Creating a gist
 
-You can also drag and drop a text file from your desktop directly into the gist editor.
+Follow the steps below to create a gist.
 
 {% if currentVersion == "free-pro-team@latest" or currentVersion ver_gt "enterprise-server@2.19" or currentVersion == "github-ae@latest" %}
 {% note %}
 
 You can also create a gist using the {% data variables.product.prodname_cli %}. For more information, see "[`gh gist create`](https://cli.github.com/manual/gh_gist_create)" in the {% data variables.product.prodname_cli %} documentation.
 
+Alternatively, you can drag and drop a text file from your desktop directly into the editor.
+
 {% endnote %}
 {% endif %}
 
@@ -70,7 +72,7 @@ You can also create a gist using the {% data variables.product.prodname_cli %}.
 3. Type an optional description and name for your gist.
 ![Gist name description](/assets/images/help/gist/gist_name_description.png)
 
-4. Type the text of your gist into the gist text box.
+4. Type the text of your gist into the gist text box. 
 ![Gist text box](/assets/images/help/gist/gist_text_box.png)
 
 5. Optionally, to create {% if currentVersion == "github-ae@latest" %}an internal{% else %}a public{% endif %} gist, click {% octicon "triangle-down" aria-label="The downwards triangle icon" %}, then click **Create {% if currentVersion == "github-ae@latest" %}internal{% else %}public{% endif %} gist**. 

data/release-notes/2-21/18.yml

@@ -0,0 +1,15 @@
+date: '2021-04-01'
+sections:
+  security_fixes:
+    - "**HIGH:** An improper access control vulnerability was identified in GitHub Enterprise Server that allowed access tokens generated via a GitHub App's [web authentication flow](https://docs.github.com/en/developers/apps/identifying-and-authorizing-users-for-github-apps#web-application-flow) to read private repository metadata without requiring appropriate permissions. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.0.4 and was fixed in 3.0.4, 2.22.10, and 2.21.18. This vulnerability was reported via the GitHub Bug Bounty program and has been assigned CVE-2021-22865."
+    - Packages have been updated to the latest security versions.
+  bugs:
+    - Services were not transitioning to new log files as part of log rotation, resulting in increased disk usage.
+    - The label on search results for internal repositories was shown as "Private" instead of "Internal".
+  known_issues:
+    - On a freshly set up GitHub Enterprise Server without any users, an attacker could create the first admin user.
+    - Custom firewall rules are not maintained during an upgrade.
+    - Git LFS tracked files [uploaded through the web interface](https://github.com/blog/2105-upload-files-to-your-repositories) are incorrectly added directly to the repository.
+    - Issues cannot be closed if they contain a permalink to a blob in the same repository where the file path is longer than 255 characters.
+    - When "Users can search GitHub.com" is enabled with GitHub Connect, issues in private and internal repositories are not included in GitHub.com search results.
+    - Security alerts are not reported when pushing to a repository on the command line.

data/release-notes/2-22/10.yml

@@ -0,0 +1,15 @@
+date: '2021-04-01'
+sections:
+  security_fixes:
+    - "**HIGH:** An improper access control vulnerability was identified in GitHub Enterprise Server that allowed access tokens generated via a GitHub App's [web authentication flow](https://docs.github.com/en/developers/apps/identifying-and-authorizing-users-for-github-apps#web-application-flow) to read private repository metadata without requiring appropriate permissions. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.0.4 and was fixed in 3.0.4, 2.22.10, and 2.21.18. This vulnerability was reported via the GitHub Bug Bounty program and has been assigned CVE-2021-22865."
+    - Packages have been updated to the latest security versions.
+  bugs:
+    - A timezone set on GitHub Enterprise 11.10.x or earlier was not being used by some services which were defaulting to UTC time.
+    - Services were not transitioning to new log files as part of log rotation, resulting in increased disk usage.
+    - The label on search results for internal repositories was shown as "Private" instead of "Internal".
+  known_issues:
+    - On a freshly set up GitHub Enterprise Server without any users, an attacker could create the first admin user.
+    - Custom firewall rules are not maintained during an upgrade.
+    - Git LFS tracked files [uploaded through the web interface](https://github.com/blog/2105-upload-files-to-your-repositories) are incorrectly added directly to the repository.
+    - Issues cannot be closed if they contain a permalink to a blob in the same repository where the file path is longer than 255 characters.
+    - When "Users can search GitHub.com" is enabled with GitHub Connect, issues in private and internal repositories are not included in GitHub.com search results.

data/release-notes/3-0/4.yml

@@ -0,0 +1,22 @@
+date: '2021-04-01'
+intro: The minimum infrastructure requirements have increased for {% data variables.product.prodname_ghe_server %} 3.0+. For more information, see "[About minimum requirements for GitHub Enterprise Server 3.0 and later](/admin/enterprise-management/upgrading-github-enterprise-server#about-minimum-requirements-for-github-enterprise-server-30-and-later)."
+sections:
+  security_fixes:
+    - "**HIGH:** An improper access control vulnerability was identified in GitHub Enterprise Server that allowed access tokens generated via a GitHub App's [web authentication flow](https://docs.github.com/en/developers/apps/identifying-and-authorizing-users-for-github-apps#web-application-flow) to read private repository metadata without requiring appropriate permissions. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.0.4 and was fixed in 3.0.4, 2.22.10, and 2.21.18. This vulnerability was reported via the GitHub Bug Bounty program and has been assigned CVE-2021-22865."
+    - Packages have been updated to the latest security versions.
+  bugs:
+    - When maintenance mode was enabled, some services continued to be listed as "active processes" even though they were expected to be running, and should not have been listed.
+    - After upgrading from 2.22.x to 3.0.x with GitHub Actions enabled, the self-hosted runner version was not updated and no self-hosted updates were made.
+    - Old GitHub Pages builds that were created from commits to a `gh-pages` branch were not cleaned up leading to increased disk usage.
+    - '`memcached` was not running on active replicas.'
+    - Upgrade failed when updating file permissions when GitHub Actions was enabled.
+    - A timezone set on GitHub Enterprise 11.10.x or earlier was not being used by some services which were defaulting to UTC time.
+    - Services were not transitioning to new log files as part of log rotation, resulting in increased disk usage.
+    - The `ghe-saml-mapping-csv` command-line utility produced a warning message.
+    - The label on search results for internal repositories was shown as "Private" instead of "Internal".
+  known_issues:
+    - On a freshly set up GitHub Enterprise Server without any users, an attacker could create the first admin user.
+    - Custom firewall rules are not maintained during an upgrade.
+    - Git LFS tracked files [uploaded through the web interface](https://github.com/blog/2105-upload-files-to-your-repositories) are incorrectly added directly to the repository.
+    - Issues cannot be closed if they contain a permalink to a blob in the same repository where the file path is longer than 255 characters.
+    - When "Users can search GitHub.com" is enabled with GitHub Connect, issues in private and internal repositories are not included in GitHub.com search results.

lib/rest/static/decorated/api.github.com.json

@@ -22557,7 +22557,7 @@
       }
     ],
     "summary": "Delete a package for an organization",
-    "description": "Deletes an entire package in an organization. You cannot delete a public package if any version of the package has more than 25 downloads. In this scenario, contact GitHub support for further assistance.\n\nTo use this endpoint, you must have admin permissions in the organization and authenticate using an access token with the `packages:read` scope. In addition:\n- If `package_type` is not `container`, your token must also include the `repo` scope.\n- If `package_type` is `container`, you must also have admin permissions to the container you want to delete.",
+    "description": "Deletes an entire package in an organization. You cannot delete a public package if any version of the package has more than 5,000 downloads. In this scenario, contact GitHub support for further assistance.\n\nTo use this endpoint, you must have admin permissions in the organization and authenticate using an access token with the `packages:read` scope. In addition:\n- If `package_type` is not `container`, your token must also include the `repo` scope.\n- If `package_type` is `container`, you must also have admin permissions to the container you want to delete.",
     "tags": [
       "packages"
     ],
@@ -22600,7 +22600,7 @@
       }
     ],
     "bodyParameters": [],
-    "descriptionHTML": "<p>Deletes an entire package in an organization. You cannot delete a public package if any version of the package has more than 25 downloads. In this scenario, contact GitHub support for further assistance.</p>\n<p>To use this endpoint, you must have admin permissions in the organization and authenticate using an access token with the <code>packages:read</code> scope. In addition:</p>\n<ul>\n<li>If <code>package_type</code> is not <code>container</code>, your token must also include the <code>repo</code> scope.</li>\n<li>If <code>package_type</code> is <code>container</code>, you must also have admin permissions to the container you want to delete.</li>\n</ul>"
+    "descriptionHTML": "<p>Deletes an entire package in an organization. You cannot delete a public package if any version of the package has more than 5,000 downloads. In this scenario, contact GitHub support for further assistance.</p>\n<p>To use this endpoint, you must have admin permissions in the organization and authenticate using an access token with the <code>packages:read</code> scope. In addition:</p>\n<ul>\n<li>If <code>package_type</code> is not <code>container</code>, your token must also include the <code>repo</code> scope.</li>\n<li>If <code>package_type</code> is <code>container</code>, you must also have admin permissions to the container you want to delete.</li>\n</ul>"
   },
   {
     "verb": "post",
@@ -23013,7 +23013,7 @@
       }
     ],
     "summary": "Delete package version for an organization",
-    "description": "Deletes a specific package version in an organization. If the package is public and the package version has more than 25 downloads, you cannot delete the package version. In this scenario, contact GitHub support for further assistance.\n\nTo use this endpoint, you must have admin permissions in the organization and authenticate using an access token with the `packages:read` scope. In addition:\n- If `package_type` is not `container`, your token must also include the `repo` scope.\n- If `package_type` is `container`, you must also have admin permissions to the container you want to delete.",
+    "description": "Deletes a specific package version in an organization. If the package is public and the package version has more than 5,000 downloads, you cannot delete the package version. In this scenario, contact GitHub support for further assistance.\n\nTo use this endpoint, you must have admin permissions in the organization and authenticate using an access token with the `packages:read` scope. In addition:\n- If `package_type` is not `container`, your token must also include the `repo` scope.\n- If `package_type` is `container`, you must also have admin permissions to the container you want to delete.",
     "tags": [
       "packages"
     ],
@@ -23056,7 +23056,7 @@
       }
     ],
     "bodyParameters": [],
-    "descriptionHTML": "<p>Deletes a specific package version in an organization. If the package is public and the package version has more than 25 downloads, you cannot delete the package version. In this scenario, contact GitHub support for further assistance.</p>\n<p>To use this endpoint, you must have admin permissions in the organization and authenticate using an access token with the <code>packages:read</code> scope. In addition:</p>\n<ul>\n<li>If <code>package_type</code> is not <code>container</code>, your token must also include the <code>repo</code> scope.</li>\n<li>If <code>package_type</code> is <code>container</code>, you must also have admin permissions to the container you want to delete.</li>\n</ul>"
+    "descriptionHTML": "<p>Deletes a specific package version in an organization. If the package is public and the package version has more than 5,000 downloads, you cannot delete the package version. In this scenario, contact GitHub support for further assistance.</p>\n<p>To use this endpoint, you must have admin permissions in the organization and authenticate using an access token with the <code>packages:read</code> scope. In addition:</p>\n<ul>\n<li>If <code>package_type</code> is not <code>container</code>, your token must also include the <code>repo</code> scope.</li>\n<li>If <code>package_type</code> is <code>container</code>, you must also have admin permissions to the container you want to delete.</li>\n</ul>"
   },
   {
     "verb": "post",
@@ -89438,7 +89438,7 @@
       }
     ],
     "summary": "Delete a package for the authenticated user",
-    "description": "Deletes a package owned by the authenticated user. You cannot delete a public package if any version of the package has more than 25 downloads. In this scenario, contact GitHub support for further assistance.\n\nTo use this endpoint, you must authenticate using an access token with the `packages:read` and `packages:delete` scope.\nIf `package_type` is not `container`, your token must also include the `repo` scope.",
+    "description": "Deletes a package owned by the authenticated user. You cannot delete a public package if any version of the package has more than 5,000 downloads. In this scenario, contact GitHub support for further assistance.\n\nTo use this endpoint, you must authenticate using an access token with the `packages:read` and `packages:delete` scope.\nIf `package_type` is not `container`, your token must also include the `repo` scope.",
     "tags": [
       "packages"
     ],
@@ -89481,7 +89481,7 @@
       }
     ],
     "bodyParameters": [],
-    "descriptionHTML": "<p>Deletes a package owned by the authenticated user. You cannot delete a public package if any version of the package has more than 25 downloads. In this scenario, contact GitHub support for further assistance.</p>\n<p>To use this endpoint, you must authenticate using an access token with the <code>packages:read</code> and <code>packages:delete</code> scope.\nIf <code>package_type</code> is not <code>container</code>, your token must also include the <code>repo</code> scope.</p>"
+    "descriptionHTML": "<p>Deletes a package owned by the authenticated user. You cannot delete a public package if any version of the package has more than 5,000 downloads. In this scenario, contact GitHub support for further assistance.</p>\n<p>To use this endpoint, you must authenticate using an access token with the <code>packages:read</code> and <code>packages:delete</code> scope.\nIf <code>package_type</code> is not <code>container</code>, your token must also include the <code>repo</code> scope.</p>"
   },
   {
     "verb": "post",
@@ -89858,7 +89858,7 @@
       }
     ],
     "summary": "Delete a package version for the authenticated user",
-    "description": "Deletes a specific package version for a package owned by the authenticated user.  If the package is public and the package version has more than 25 downloads, you cannot delete the package version. In this scenario, contact GitHub support for further assistance.\n\nTo use this endpoint, you must have admin permissions in the organization and authenticate using an access token with the `packages:read` scope.\nIf `package_type` is not `container`, your token must also include the `repo` scope.",
+    "description": "Deletes a specific package version for a package owned by the authenticated user.  If the package is public and the package version has more than 5,000 downloads, you cannot delete the package version. In this scenario, contact GitHub support for further assistance.\n\nTo use this endpoint, you must have admin permissions in the organization and authenticate using an access token with the `packages:read` scope.\nIf `package_type` is not `container`, your token must also include the `repo` scope.",
     "tags": [
       "packages"
     ],
@@ -89901,7 +89901,7 @@
       }
     ],
     "bodyParameters": [],
-    "descriptionHTML": "<p>Deletes a specific package version for a package owned by the authenticated user.  If the package is public and the package version has more than 25 downloads, you cannot delete the package version. In this scenario, contact GitHub support for further assistance.</p>\n<p>To use this endpoint, you must have admin permissions in the organization and authenticate using an access token with the <code>packages:read</code> scope.\nIf <code>package_type</code> is not <code>container</code>, your token must also include the <code>repo</code> scope.</p>"
+    "descriptionHTML": "<p>Deletes a specific package version for a package owned by the authenticated user.  If the package is public and the package version has more than 5,000 downloads, you cannot delete the package version. In this scenario, contact GitHub support for further assistance.</p>\n<p>To use this endpoint, you must have admin permissions in the organization and authenticate using an access token with the <code>packages:read</code> scope.\nIf <code>package_type</code> is not <code>container</code>, your token must also include the <code>repo</code> scope.</p>"
   },
   {
     "verb": "post",