Table github_actions_repository_runner returning empty #527
Description
Describe the bug
I'm having an issue with the github plugin table github_actions_repository_runner
If I query a repository I don't have access, I get 403:
select * from github_actions_repository_runner where repository_full_name = 'turbot/steampipe'
Error: github: GET https://api.github.com/repos/turbot/steampipe/actions/runners?per_page=100: 403 You must have repository read permissions or have the repository runners fine-grained permission. [] (SQLSTATE HV000)
+----------+----------------------+----+------+----+--------+------+--------+--------------------+--------+------+
| login_id | repository_full_name | id | name | os | status | busy | labels | sp_connection_name | sp_ctx | _ctx |
+----------+----------------------+----+------+----+--------+------+--------+--------------------+--------+------+
+----------+----------------------+----+------+----+--------+------+--------+--------------------+--------+------+
0 rowsIf I query a repository I have access, I always get an empty result:
select * from github_actions_repository_runner where repository_full_name = 'gabrielsoltz/metahub'
+----------+----------------------+----+------+----+--------+------+--------+--------------------+--------+------+
| login_id | repository_full_name | id | name | os | status | busy | labels | sp_connection_name | sp_ctx | _ctx |
+----------+----------------------+----+------+----+--------+------+--------+--------------------+--------+------+
+----------+----------------------+----+------+----+--------+------+--------+--------------------+--------+------+
0 rowsI double checked the permissions and I have both Metadata and Self-hosted runners (and I even tried with full admin user)... I also tried this for repositories in an organization.
Another "interesting" thing, is that if i query an non-existent repository, I get the same result, empty:
select * from github_actions_repository_runner where repository_full_name = 'turbot/steampipwwwe'
+----------+----------------------+----+------+----+--------+------+--------+--------------------+--------+------+
| login_id | repository_full_name | id | name | os | status | busy | labels | sp_connection_name | sp_ctx | _ctx |
+----------+----------------------+----+------+----+--------+------+--------+--------------------+--------+------+
+----------+----------------------+----+------+----+--------+------+--------+--------------------+--------+------+
0 rowsI tested this with PAT Classsic Token and Github App.
Github App configured with these permissions:
Read access to Dependabot alerts, actions, actions variables, administration, attestations api, checks, code, codespaces, codespaces lifecycle admin, codespaces metadata, commit statuses, custom organization roles, custom properties for repositories, custom repository roles, dependabot secrets, deployments, discussions, environments, issues, members, merge queues, metadata, organization actions variables, organization administration, organization announcement banners, organization codespaces, organization codespaces secrets, organization codespaces settings, organization copilot seat management, organization custom properties for repositories, organization dependabot secrets, organization events, organization hooks, organization personal access token requests, organization personal access tokens, organization plan, organization projects, organization secrets, organization self hosted runners, organization user blocking, packages, pages, pull requests, repository advisories, repository hooks, repository projects, secret scanning alerts, secrets, security events, and team discussions
Steampipe version (steampipe -v)
Steampipe v2.3.4
Plugin version (steampipe plugin list)
1.7.0