- from: github
test: gh\s+repo\s+delete(\s|$)
description: "Permanently deletes a repository and all its data."
id: github:repo_delete
severity: Critical
- from: github
test: gh\s+repo\s+archive(\s|$)
description: "Archiving a repository makes it read-only and can break workflows."
id: github:repo_archive
severity: High
- from: github
test: gh\s+repo\s+rename(\s|$)
description: "Renaming a repository breaks all existing URLs, clones, and CI/CD references."
id: github:repo_rename
severity: High
- from: github
test: gh\s+repo\s+edit\s+.*--visibility
description: "Changing repository visibility can expose private code or break public access."
id: github:repo_change_visibility
severity: High
- from: github
test: gh\s+release\s+delete(\s|$)
description: "Deleting a release removes it and its assets permanently."
id: github:release_delete
severity: High
- from: github
test: gh\s+secret\s+delete(\s|$)
description: "Deleting a secret can break CI/CD pipelines that depend on it."
id: github:secret_delete
severity: High
- from: github
test: gh\s+variable\s+delete(\s|$)
description: "Deleting a variable can break CI/CD pipelines that depend on it."
id: github:variable_delete
severity: High