Repository permissions

FOSSA supports several different ways of importing your code via Dashboard > Add Project:

  • Github
  • Bitbucket
  • Gitlab

FOSSA uses the Oauth API's for each of these services in order to import, which requires users to grant certain permissions to FOSSA.

Github permissions

To import from your github, FOSSA requires the following permissions:

  • repo
  • user
  • write:repo_hook
  • read:org
  • admin:org_hook

Github scopes

For more information on these permissions, view the Github docs

Bitbucket permissions

To import from your bitbucket, FOSSA requires the following permissions:

  • Account
    • Email
    • Read
  • Team membership
    • Read
  • Projects
    • Read
  • Repositories
    • Read
  • Pull requests
    • Read
  • Issues
    • Read
    • Write
  • Snippets
    • Read
  • Webhooks
    • Read and write
  • Pipelines
    • Read

Bitbucket scopes

For more information on these permissions, view the Bitbucket docs

Gitlab permissions

To import from your github, FOSSA requires the following permissions:

  • api

Gitlab scopes

For more information on these permissions, view the Gitlab docs