Skip to content
GitHub/IssueOps Docs

Site navigation

On this page

About

IssueOps is a framework for using GitHub issues and pull requests as part of workflows
  • Alpha
On this page

Issues and pull requests

In GitHub, a pull request (PR) can be interacted with in a lot of the same ways as an issue. For example, the List repository issues REST API will return both issues and PRs for a repository.

This means that many of the features of an issue are applicable to a PR. However, PRs have some extra functionality that can also be used in an IssueOps workflow. Depending on the use-case, you might want to select one over the other. For example, if you want to use the review and approval functionality for changes to repository contents, you'll need to use a PR. If you want to use the issue forms feature, you'll need to use an issue.

For more information on their structure and usage in IssueOps, see Issues and PRs.

IssueOps concept

Think of IssueOps as a state diagram. An issue is the object that changes state in response to specific events. As the object changes state, certain actions may be performed as part of the transition (provided any guard conditions are met). Once an end state is reached, the issue is considered complete and can be closed.

State Diagrams

The following sections contain definitions and examples of common terms used in state diagrams. These terms are used throughout this documentation.

Action

An atomic task that is performed when a transition is taken.

@mona has invited you to collaborate

Event

An external occurrence that triggers a state change.

@octocat self-assigned this

Guard

A condition that is evaluated when a trigger event occurs. A transition is taken only if all associated guard conditions are met.

State

A point in an object's lifecycle that satisfies certain condition(s).

Open

Transition

A link between two states that, when traversed by an object, will cause certain action(s) to be performed.

IssueOps workflow

In general, an IssueOps workflow will follow the same basic pattern:

  1. A user opens an issue and provides information about a request
  2. The issue is validated to ensure it contains the required information
  3. (Optional) Approval is requested from an authorized user or team
  4. The request is processed and the issue is closed

Let's use a more practical example...

Example: GitHub team membership

User Story: As a developer, I should be able to request membership to various teams and, if approved by administrators, be granted membership.

Suppose you are an admin of an organization and would like to reduce the overhead of managing team membership. You can use IssueOps to build an automated membership request and approval process.

We can assume the current, manual workflow looks something like this when rendered as a state diagram.

In state diagram format, nodes represent the state of an object (the membership request), while transitions represent actions that are taken as the object changes state.

Submit request
Approve request
Deny request
Add to team
Notify user
Opened
Submitted
Approved
Denied
Closed

When creating an IssueOps workflow, you can use this diagram as a starting point to determine what events should trigger state changes, how to represent those events in issues, and what actions to take in response to state changes.

Event triggers

In the membership request workflow, there are several events that trigger a change in the request state:

  • A user submits a request
  • An admin approves a request
  • An admin denies a request
  • A user is added to a team
  • A user is notified

In GitHub, there are many ways to trigger events. For a full list, see Events that trigger workflows. Here, we will focus on the events that are most relevant to IssueOps.

Issues

Events related to issues seem like a good fit for IssueOps 😉 Issues are the entrypoint to the worflow. In particular, the issue being opened. You can think of this as someone coming to you and saying "Can you add me to this team?" Until this event occurs, there's nothing to do!

However, this is not the only issue event that can be used in a workflow. The following table lists other issue events and example use-cases.

EventExample
openedStart a request workflow
editedRe-validate a modified request
deletedCancel in-flight tasks for a request
transferredAssign ownership of a request to a different department
pinnedUpgrade the severity/urgency of a request
unpinnedDowngrade the severity/urgency of a request
closedEnd a request workflow
reopenedRestart a request workflow
assignedPing the assignee in Slack
unassignedPing the previous assignee in Slack
labeledTrack the current state of a request
unlabeledTrack the current state of a request
lockedSee locking conversations
unlockedSee locking conversations
milestonedTrack requests by type to compare to team goals
demilestonedTrack requests by type to compare to team goals

Access to delete issues should be carefully controlled. If you delete an issue, you will lose all of the information associated with it, including comments and attachments. You will also lose this request in the history of the repository.

Issue comments

After an issue is opened, other events must take place that change the state and drive it through the workflow. In the membership request workflow, for example, commenting on an issue is a great way to handle state changes such as an administrator approving or denying the request.

A core difference between issues and PRs is that issues do not have a built-in approval process. However, this can be implemented using issue comments. For more information, see Approvals.

Currently there are only three issue_comment events that can trigger workflows:

  • created
  • edited
  • deleted

In all three cases, the context of the comment should be taken into account to determine how to transition the request state. For example, if only authorized administrators are allowed to approve team membership requests, how should an IssueOps workflow react if someone else comments with approval?

All GitHub Actions workflow runs include important context information that can be accessed by your workflow. The issue_comment context can provide us with information to decide what actions to take, if any. In our team membership workflow, we can get the user that created the comment using the github.event.comment.user.login property. We can then use this to determine if the user is authorized to approve the request.

Labels

Labels are a great way to track the state of a request. You can think of these as the nodes in a state diagram, while the transitions are the actions that are taken as the request changes state. You can also use labels to classify the types of requests when your repository supports more than one IssueOps workflow. For example, in the membership request workflow, you might have the following labels:

LabelDescription
team-membership-requestThe type of request
submittedRequests that have been submitted and are pending review

Looking at this list, you may ask "why there aren't labels for approved, denied, or closed states?" These states don't have any transitions that do not lead to the issue being closed. In other words, once a request is approved or denied, the issue will always reach the closed state, regardless of whether it was approved or denied. If this workflow had more steps, such as requiring multiple approvals, additional states would need to be tracked.

As with issue_comment events, there are only three label events available:

  • created
  • edited
  • deleted

These, however, refer to the actual creation and modification of the label itself, so they may not apply to your workflow. You will generally use the issue => labeled event instead.

Anyone with access to open issues can also change labels! Labels are good for state tracking, but should not be used to determine if a request is valid! For more information, see the Validate step.

GitHub features

You can leverage other GitHub features to dramatically increase the value of IssueOps.

Secrets

Secrets let you store sensitive information at the organization, repository, or environment level to share with GitHub Actions workflows. You can use secrets to store information such as API keys, passwords, or tokens. Secrets are encrypted and only exposed to runners at runtime. You can use secrets to store information such as API keys, passwords, or tokens that can be used to access external resources from your workflows.

Projects and milestones

Keeping track of requests, especially when you have an approval process in place, is important. Projects make it easy to track requests throughout their lifecycle. You can automatically add issues as they are opened, and use lifecycle rules to keep track of the state of requests without having to manually move them around your project board.

You can also combine this with Milestones to better organize issues and PRs. For example, if your IssueOps repository includes workflows for multiple types of requests, you can add issues for each request type to a corresponding milestone. That way they are automatically categorized in your project.

Project insights give you a visual snapshot of how requests are being processed. You can create custom graphs of to see when and how teams are using your workflows.

GitHub Apps

One of the most important things to consider when creating workflows that interact with the GitHub APIs is permissions. GitHub Actions workflows can only interact with the repository in which they run. For example, the default permissions do not allow GitHub Actions to manage team membership. If you are building a workflow that interacts with resources outside of the repository it is running in, you should consider creating an organization-level GitHub App and installing it in your IssueOps repository. That way, you can use the permissions of the app to interact with other resources in your organization.

For more information, see GitHub App in the setup documentation.