Details
-
Suggestion
-
Resolution: Won't Fix
Description
A user who doesn't have write access to Dev, Master and Release branches still has the ability to write to the Build Status on pull requests for those branches. Users who inadvertently add an app with an Oauth consumer that inherits those permissions can break builds for the whole team.
What I would like to see is a way to block/remove certain integrations as an admin for my users. Not see or change the tokens themselves, just username and token name then allow or disallow it.