Fix order of params for updateVulnerabilityAlerts

deiga · deiga · commit bf12956b23b7 · 2026-01-17T00:32:28.000+02:00
Signed-off-by: Timo Sand &lt;timo.sand@f-secure.com&gt;
diff --git a/github/resource_github_repository.go b/github/resource_github_repository.go
@@ -792,7 +792,7 @@ func resourceGithubRepositoryCreate(ctx context.Context, d *schema.ResourceData,
 		}
 	}
 
-	err := updateVulnerabilityAlerts(d, client, ctx, owner, repoName)
+	err := updateVulnerabilityAlerts(ctx, d, client, owner, repoName)
 	if err != nil {
 		return diag.FromErr(err)
 	}
@@ -1040,7 +1040,7 @@ func resourceGithubRepositoryUpdate(ctx context.Context, d *schema.ResourceData,
 	}
 
 	if d.HasChange("vulnerability_alerts") {
-		err = updateVulnerabilityAlerts(d, client, ctx, owner, repoName)
+		err = updateVulnerabilityAlerts(ctx, d, client, owner, repoName)
 		if err != nil {
 			return diag.FromErr(err)
 		}
@@ -1266,7 +1266,7 @@ func resourceGithubParseFullName(resourceDataLike interface {
 	return parts[0], parts[1], true
 }
 
-func updateVulnerabilityAlerts(d *schema.ResourceData, client *github.Client, ctx context.Context, owner, repoName string) error {
+func updateVulnerabilityAlerts(ctx context.Context, d *schema.ResourceData, client *github.Client, owner, repoName string) error {
 	updateVulnerabilityAlertsSDK := client.Repositories.DisableVulnerabilityAlerts
 	vulnerabilityAlerts, ok := d.GetOk("vulnerability_alerts")
 
@@ -1277,7 +1277,14 @@ func updateVulnerabilityAlerts(d *schema.ResourceData, client *github.Client, ct
 	}
 
 	resp, err := updateVulnerabilityAlertsSDK(ctx, owner, repoName)
-	if err != nil {
+	if err != nil && resp != nil {
+		tflog.Debug(ctx, "Error updating vulnerability alerts", map[string]any{
+			"owner":       owner,
+			"repository":  repoName,
+			"error":       err.Error(),
+			"status_code": resp.StatusCode,
+			"body":        resp.Body,
+		})
 		// Check if the error is because an Organization or Enterprise policy is preventing the change
 		// This is a temporary workaround while we extract Vulnerability Alerts into a separate resource.
 		if resp.StatusCode == http.StatusUnprocessableEntity && strings.Contains(err.Error(), "An enforced security configuration prevented modifying") && !ok {

Original file line number	Diff line number	Diff line change
`@@ -792,7 +792,7 @@ func resourceGithubRepositoryCreate(ctx context.Context, d *schema.ResourceData,`
`792`	`792`	`}`
`793`	`793`	`}`
`794`	`794`
`795`		`- err := updateVulnerabilityAlerts(d, client, ctx, owner, repoName)`
	`795`	`+ err := updateVulnerabilityAlerts(ctx, d, client, owner, repoName)`
`796`	`796`	`if err != nil {`
`797`	`797`	`return diag.FromErr(err)`
`798`	`798`	`}`
`@@ -1040,7 +1040,7 @@ func resourceGithubRepositoryUpdate(ctx context.Context, d *schema.ResourceData,`
`1040`	`1040`	`}`
`1041`	`1041`
`1042`	`1042`	`if d.HasChange("vulnerability_alerts") {`
`1043`		`- err = updateVulnerabilityAlerts(d, client, ctx, owner, repoName)`
	`1043`	`+ err = updateVulnerabilityAlerts(ctx, d, client, owner, repoName)`
`1044`	`1044`	`if err != nil {`
`1045`	`1045`	`return diag.FromErr(err)`
`1046`	`1046`	`}`
`@@ -1266,7 +1266,7 @@ func resourceGithubParseFullName(resourceDataLike interface {`
`1266`	`1266`	`return parts[0], parts[1], true`
`1267`	`1267`	`}`
`1268`	`1268`
`1269`		`-func updateVulnerabilityAlerts(d schema.ResourceData, client github.Client, ctx context.Context, owner, repoName string) error {`
	`1269`	`+func updateVulnerabilityAlerts(ctx context.Context, d schema.ResourceData, client github.Client, owner, repoName string) error {`
`1270`	`1270`	`updateVulnerabilityAlertsSDK := client.Repositories.DisableVulnerabilityAlerts`
`1271`	`1271`	`vulnerabilityAlerts, ok := d.GetOk("vulnerability_alerts")`
`1272`	`1272`
`@@ -1277,7 +1277,14 @@ func updateVulnerabilityAlerts(d schema.ResourceData, client github.Client, ct`
`1277`	`1277`	`}`
`1278`	`1278`
`1279`	`1279`	`resp, err := updateVulnerabilityAlertsSDK(ctx, owner, repoName)`
`1280`		`- if err != nil {`
	`1280`	`+ if err != nil && resp != nil {`
	`1281`	`+ tflog.Debug(ctx, "Error updating vulnerability alerts", map[string]any{`
	`1282`	`+ "owner": owner,`
	`1283`	`+ "repository": repoName,`
	`1284`	`+ "error": err.Error(),`
	`1285`	`+ "status_code": resp.StatusCode,`
	`1286`	`+ "body": resp.Body,`
	`1287`	`+ })`
`1281`	`1288`	`// Check if the error is because an Organization or Enterprise policy is preventing the change`
`1282`	`1289`	`// This is a temporary workaround while we extract Vulnerability Alerts into a separate resource.`
`1283`	`1290`	`if resp.StatusCode == http.StatusUnprocessableEntity && strings.Contains(err.Error(), "An enforced security configuration prevented modifying") && !ok {`