GraphQL schema update (#50435)

Co-authored-by: rachmari <[email protected]>

Author: docs-bot

src/graphql/data/fpt/changelog.json

@@ -1,4 +1,23 @@
 [
+  {
+    "schemaChanges": [
+      {
+        "title": "The GraphQL schema includes these changes:",
+        "changes": [
+          "<p>Type <code>CodeScanningParameters</code> was added</p>",
+          "<p>Type <code>CodeScanningParametersInput</code> was added</p>",
+          "<p>Type <code>CodeScanningTool</code> was added</p>",
+          "<p>Type <code>CodeScanningToolInput</code> was added</p>",
+          "<p>Enum value 'CODE_SCANNING<code>was added to enum</code>RepositoryRuleType'</p>",
+          "<p>Member <code>CodeScanningParameters</code> was added to Union type <code>RuleParameters</code></p>",
+          "<p>Input field <code>codeScanning</code> of type <code>CodeScanningParametersInput</code> was added to input object type <code>RuleParametersInput</code></p>"
+        ]
+      }
+    ],
+    "previewChanges": [],
+    "upcomingChanges": [],
+    "date": "2024-05-02"
+  },
   {
     "schemaChanges": [
       {

src/graphql/data/fpt/schema.docs.graphql

@@ -4326,6 +4326,76 @@ type CodeOfConduct implements Node {
   url: URI
 }
 
+"""
+Choose which tools must provide code scanning results before the reference is
+updated. When configured, code scanning must be enabled and have results for
+both the commit and the reference being updated.
+"""
+type CodeScanningParameters {
+  """
+  Tools that must provide code scanning results for this rule to pass.
+  """
+  codeScanningTools: [CodeScanningTool!]!
+}
+
+"""
+Choose which tools must provide code scanning results before the reference is
+updated. When configured, code scanning must be enabled and have results for
+both the commit and the reference being updated.
+"""
+input CodeScanningParametersInput {
+  """
+  Tools that must provide code scanning results for this rule to pass.
+  """
+  codeScanningTools: [CodeScanningToolInput!]!
+}
+
+"""
+A tool that must provide code scanning results for this rule to pass.
+"""
+type CodeScanningTool {
+  """
+  The severity level at which code scanning results that raise alerts block a
+  reference update. For more information on alert severity levels, see "[About code scanning alerts](${externalDocsUrl}/code-security/code-scanning/managing-code-scanning-alerts/about-code-scanning-alerts#about-alert-severity-and-security-severity-levels)."
+  """
+  alertsThreshold: String!
+
+  """
+  The severity level at which code scanning results that raise security alerts
+  block a reference update. For more information on security severity levels,
+  see "[About code scanning alerts](${externalDocsUrl}/code-security/code-scanning/managing-code-scanning-alerts/about-code-scanning-alerts#about-alert-severity-and-security-severity-levels)."
+  """
+  securityAlertsThreshold: String!
+
+  """
+  The name of a code scanning tool
+  """
+  tool: String!
+}
+
+"""
+A tool that must provide code scanning results for this rule to pass.
+"""
+input CodeScanningToolInput {
+  """
+  The severity level at which code scanning results that raise alerts block a
+  reference update. For more information on alert severity levels, see "[About code scanning alerts](${externalDocsUrl}/code-security/code-scanning/managing-code-scanning-alerts/about-code-scanning-alerts#about-alert-severity-and-security-severity-levels)."
+  """
+  alertsThreshold: String!
+
+  """
+  The severity level at which code scanning results that raise security alerts
+  block a reference update. For more information on security severity levels,
+  see "[About code scanning alerts](${externalDocsUrl}/code-security/code-scanning/managing-code-scanning-alerts/about-code-scanning-alerts#about-alert-severity-and-security-severity-levels)."
+  """
+  securityAlertsThreshold: String!
+
+  """
+  The name of a code scanning tool
+  """
+  tool: String!
+}
+
 """
 Collaborators affiliation level with a subject.
 """
@@ -46404,6 +46474,13 @@ enum RepositoryRuleType {
   """
   BRANCH_NAME_PATTERN
 
+  """
+  Choose which tools must provide code scanning results before the reference is
+  updated. When configured, code scanning must be enabled and have results for
+  both the commit and the reference being updated.
+  """
+  CODE_SCANNING
+
   """
   Committer email pattern
   """
@@ -48162,6 +48239,7 @@ Types which can be parameters for `RepositoryRule` objects.
 """
 union RuleParameters =
     BranchNamePatternParameters
+  | CodeScanningParameters
   | CommitAuthorEmailPatternParameters
   | CommitMessagePatternParameters
   | CommitterEmailPatternParameters
@@ -48185,6 +48263,11 @@ input RuleParametersInput {
   """
   branchNamePattern: BranchNamePatternParametersInput
 
+  """
+  Parameters used for the `code_scanning` rule type
+  """
+  codeScanning: CodeScanningParametersInput
+
   """
   Parameters used for the `commit_author_email_pattern` rule type
   """

src/graphql/data/fpt/schema.json

@@ -12898,6 +12898,56 @@
         }
       ]
     },
+    {
+      "name": "CodeScanningParameters",
+      "kind": "objects",
+      "id": "codescanningparameters",
+      "href": "/graphql/reference/objects#codescanningparameters",
+      "description": "<p>Choose which tools must provide code scanning results before the reference is\nupdated. When configured, code scanning must be enabled and have results for\nboth the commit and the reference being updated.</p>",
+      "fields": [
+        {
+          "name": "codeScanningTools",
+          "description": "<p>Tools that must provide code scanning results for this rule to pass.</p>",
+          "type": "[CodeScanningTool!]!",
+          "id": "codescanningtool",
+          "kind": "objects",
+          "href": "/graphql/reference/objects#codescanningtool"
+        }
+      ]
+    },
+    {
+      "name": "CodeScanningTool",
+      "kind": "objects",
+      "id": "codescanningtool",
+      "href": "/graphql/reference/objects#codescanningtool",
+      "description": "<p>A tool that must provide code scanning results for this rule to pass.</p>",
+      "fields": [
+        {
+          "name": "alertsThreshold",
+          "description": "<p>The severity level at which code scanning results that raise alerts block a\nreference update. For more information on alert severity levels, see \"<a href=\"$%7BexternalDocsUrl%7D/code-security/code-scanning/managing-code-scanning-alerts/about-code-scanning-alerts#about-alert-severity-and-security-severity-levels\">About code scanning alerts</a>.\".</p>",
+          "type": "String!",
+          "id": "string",
+          "kind": "scalars",
+          "href": "/graphql/reference/scalars#string"
+        },
+        {
+          "name": "securityAlertsThreshold",
+          "description": "<p>The severity level at which code scanning results that raise security alerts\nblock a reference update. For more information on security severity levels,\nsee \"<a href=\"$%7BexternalDocsUrl%7D/code-security/code-scanning/managing-code-scanning-alerts/about-code-scanning-alerts#about-alert-severity-and-security-severity-levels\">About code scanning alerts</a>.\".</p>",
+          "type": "String!",
+          "id": "string",
+          "kind": "scalars",
+          "href": "/graphql/reference/scalars#string"
+        },
+        {
+          "name": "tool",
+          "description": "<p>The name of a code scanning tool.</p>",
+          "type": "String!",
+          "id": "string",
+          "kind": "scalars",
+          "href": "/graphql/reference/scalars#string"
+        }
+      ]
+    },
     {
       "name": "CommentDeletedEvent",
       "kind": "objects",
@@ -85686,6 +85736,10 @@
           "name": "BRANCH_NAME_PATTERN",
           "description": "<p>Branch name pattern.</p>"
         },
+        {
+          "name": "CODE_SCANNING",
+          "description": "<p>Choose which tools must provide code scanning results before the reference is\nupdated. When configured, code scanning must be enabled and have results for\nboth the commit and the reference being updated.</p>"
+        },
         {
           "name": "COMMITTER_EMAIL_PATTERN",
           "description": "<p>Committer email pattern.</p>"
@@ -89726,6 +89780,11 @@
           "id": "branchnamepatternparameters",
           "href": "/graphql/reference/objects#branchnamepatternparameters"
         },
+        {
+          "name": "CodeScanningParameters",
+          "id": "codescanningparameters",
+          "href": "/graphql/reference/objects#codescanningparameters"
+        },
         {
           "name": "CommitAuthorEmailPatternParameters",
           "id": "commitauthoremailpatternparameters",
@@ -91883,6 +91942,56 @@
         }
       ]
     },
+    {
+      "name": "CodeScanningParametersInput",
+      "kind": "inputObjects",
+      "id": "codescanningparametersinput",
+      "href": "/graphql/reference/input-objects#codescanningparametersinput",
+      "description": "<p>Choose which tools must provide code scanning results before the reference is\nupdated. When configured, code scanning must be enabled and have results for\nboth the commit and the reference being updated.</p>",
+      "inputFields": [
+        {
+          "name": "codeScanningTools",
+          "description": "<p>Tools that must provide code scanning results for this rule to pass.</p>",
+          "type": "[CodeScanningToolInput!]!",
+          "id": "codescanningtoolinput",
+          "kind": "input-objects",
+          "href": "/graphql/reference/input-objects#codescanningtoolinput"
+        }
+      ]
+    },
+    {
+      "name": "CodeScanningToolInput",
+      "kind": "inputObjects",
+      "id": "codescanningtoolinput",
+      "href": "/graphql/reference/input-objects#codescanningtoolinput",
+      "description": "<p>A tool that must provide code scanning results for this rule to pass.</p>",
+      "inputFields": [
+        {
+          "name": "alertsThreshold",
+          "description": "<p>The severity level at which code scanning results that raise alerts block a\nreference update. For more information on alert severity levels, see \"<a href=\"$%7BexternalDocsUrl%7D/code-security/code-scanning/managing-code-scanning-alerts/about-code-scanning-alerts#about-alert-severity-and-security-severity-levels\">About code scanning alerts</a>.\".</p>",
+          "type": "String!",
+          "id": "string",
+          "kind": "scalars",
+          "href": "/graphql/reference/scalars#string"
+        },
+        {
+          "name": "securityAlertsThreshold",
+          "description": "<p>The severity level at which code scanning results that raise security alerts\nblock a reference update. For more information on security severity levels,\nsee \"<a href=\"$%7BexternalDocsUrl%7D/code-security/code-scanning/managing-code-scanning-alerts/about-code-scanning-alerts#about-alert-severity-and-security-severity-levels\">About code scanning alerts</a>.\".</p>",
+          "type": "String!",
+          "id": "string",
+          "kind": "scalars",
+          "href": "/graphql/reference/scalars#string"
+        },
+        {
+          "name": "tool",
+          "description": "<p>The name of a code scanning tool.</p>",
+          "type": "String!",
+          "id": "string",
+          "kind": "scalars",
+          "href": "/graphql/reference/scalars#string"
+        }
+      ]
+    },
     {
       "name": "CommitAuthor",
       "kind": "inputObjects",
@@ -98676,6 +98785,14 @@
           "kind": "input-objects",
           "href": "/graphql/reference/input-objects#branchnamepatternparametersinput"
         },
+        {
+          "name": "codeScanning",
+          "description": "<p>Parameters used for the <code>code_scanning</code> rule type.</p>",
+          "type": "CodeScanningParametersInput",
+          "id": "codescanningparametersinput",
+          "kind": "input-objects",
+          "href": "/graphql/reference/input-objects#codescanningparametersinput"
+        },
         {
           "name": "commitAuthorEmailPattern",
           "description": "<p>Parameters used for the <code>commit_author_email_pattern</code> rule type.</p>",

src/graphql/data/ghec/schema.docs.graphql

@@ -4326,6 +4326,76 @@ type CodeOfConduct implements Node {
   url: URI
 }
 
+"""
+Choose which tools must provide code scanning results before the reference is
+updated. When configured, code scanning must be enabled and have results for
+both the commit and the reference being updated.
+"""
+type CodeScanningParameters {
+  """
+  Tools that must provide code scanning results for this rule to pass.
+  """
+  codeScanningTools: [CodeScanningTool!]!
+}
+
+"""
+Choose which tools must provide code scanning results before the reference is
+updated. When configured, code scanning must be enabled and have results for
+both the commit and the reference being updated.
+"""
+input CodeScanningParametersInput {
+  """
+  Tools that must provide code scanning results for this rule to pass.
+  """
+  codeScanningTools: [CodeScanningToolInput!]!
+}
+
+"""
+A tool that must provide code scanning results for this rule to pass.
+"""
+type CodeScanningTool {
+  """
+  The severity level at which code scanning results that raise alerts block a
+  reference update. For more information on alert severity levels, see "[About code scanning alerts](${externalDocsUrl}/code-security/code-scanning/managing-code-scanning-alerts/about-code-scanning-alerts#about-alert-severity-and-security-severity-levels)."
+  """
+  alertsThreshold: String!
+
+  """
+  The severity level at which code scanning results that raise security alerts
+  block a reference update. For more information on security severity levels,
+  see "[About code scanning alerts](${externalDocsUrl}/code-security/code-scanning/managing-code-scanning-alerts/about-code-scanning-alerts#about-alert-severity-and-security-severity-levels)."
+  """
+  securityAlertsThreshold: String!
+
+  """
+  The name of a code scanning tool
+  """
+  tool: String!
+}
+
+"""
+A tool that must provide code scanning results for this rule to pass.
+"""
+input CodeScanningToolInput {
+  """
+  The severity level at which code scanning results that raise alerts block a
+  reference update. For more information on alert severity levels, see "[About code scanning alerts](${externalDocsUrl}/code-security/code-scanning/managing-code-scanning-alerts/about-code-scanning-alerts#about-alert-severity-and-security-severity-levels)."
+  """
+  alertsThreshold: String!
+
+  """
+  The severity level at which code scanning results that raise security alerts
+  block a reference update. For more information on security severity levels,
+  see "[About code scanning alerts](${externalDocsUrl}/code-security/code-scanning/managing-code-scanning-alerts/about-code-scanning-alerts#about-alert-severity-and-security-severity-levels)."
+  """
+  securityAlertsThreshold: String!
+
+  """
+  The name of a code scanning tool
+  """
+  tool: String!
+}
+
 """
 Collaborators affiliation level with a subject.
 """
@@ -46404,6 +46474,13 @@ enum RepositoryRuleType {
   """
   BRANCH_NAME_PATTERN
 
+  """
+  Choose which tools must provide code scanning results before the reference is
+  updated. When configured, code scanning must be enabled and have results for
+  both the commit and the reference being updated.
+  """
+  CODE_SCANNING
+
   """
   Committer email pattern
   """
@@ -48162,6 +48239,7 @@ Types which can be parameters for `RepositoryRule` objects.
 """
 union RuleParameters =
     BranchNamePatternParameters
+  | CodeScanningParameters
   | CommitAuthorEmailPatternParameters
   | CommitMessagePatternParameters
   | CommitterEmailPatternParameters
@@ -48185,6 +48263,11 @@ input RuleParametersInput {
   """
   branchNamePattern: BranchNamePatternParametersInput
 
+  """
+  Parameters used for the `code_scanning` rule type
+  """
+  codeScanning: CodeScanningParametersInput
+
   """
   Parameters used for the `commit_author_email_pattern` rule type
   """