List secret scanning alerts for a repository

type Github = {

  token: string;

};

/**

 * List secret scanning alerts for a repository

 * Lists secret scanning alerts for an eligible repository, from newest to oldest.

To use this endpoint, you must be an administrator for the repository or for the organization that owns the repository, and you must use a personal access token with the `repo` scope or `security_events` scope.

For public repositories, you may instead use the `public_repo` scope.

GitHub Apps must have the `secret_scanning_alerts` read permission to use this endpoint.

 */

export async function main(

  auth: Github,

  owner: string,

  repo: string,

  state: "open" | "resolved" | undefined,

  secret_type: string | undefined,

  resolution: string | undefined,

  sort: "created" | "updated" | undefined,

  direction: "asc" | "desc" | undefined,

  page: string | undefined,

  per_page: string | undefined,

  before: string | undefined,

  after: string | undefined

) {

  const url = new URL(

    `https://api.github.com/repos/${owner}/${repo}/secret-scanning/alerts`

  );

  for (const [k, v] of [

    ["state", state],

    ["secret_type", secret_type],

    ["resolution", resolution],

    ["sort", sort],

    ["direction", direction],

    ["page", page],

    ["per_page", per_page],

    ["before", before],

    ["after", after],

  ]) {

    if (v !== undefined && v !== "") {

      url.searchParams.append(k, v);

    }

  }

  const response = await fetch(url, {

    method: "GET",

    headers: {

      Authorization: "Bearer " + auth.token,

    },

    body: undefined,

  });

  if (!response.ok) {

    const text = await response.text();

    throw new Error(`${response.status} ${text}`);

  }

  return await response.json();

}