fix: ignore vulnerability_alerts on GHE 3.x (endpoint returns 404)

CSVD · Apr 7, 2026 · d7d39cb · d7d39cb
1 parent 7ca9562
commit d7d39cb
Showing 1 changed file with 6 additions and 2 deletions.
diff --git a/github_repo.tf b/github_repo.tf
@@ -3,7 +3,7 @@ locals {
 
   # Safe access to repo and existing resources
   github_repo = var.create_repo && length(github_repository.repo) > 0 ? github_repository.repo[0] : (
-    !var.create_repo ? data.github_repository.existing[0] : null
+    ! var.create_repo ? data.github_repository.existing[0] : null
   )
 
   validate_merge_options = (
@@ -90,7 +90,11 @@ resource "github_repository" "repo" {
   lifecycle {
     ignore_changes = [
       auto_init,
-      template
+      template,
+      # vulnerability_alerts endpoint returns 404 on GitHub Enterprise Server 3.x
+      # (the Dependabot alerts API is not supported on this GHE version).
+      # Ignoring prevents terraform apply from failing with 404 on every run.
+      vulnerability_alerts,
     ]
   }
 }