GitHub: scopes update

Author: codemasher

src/Providers/GitHub.php

@@ -26,37 +26,46 @@ class GitHub extends OAuth2Provider implements CSRFToken, TokenRefresh, UserInfo
 
 	public const IDENTIFIER = 'GITHUB';
 
-	// GitHub accepts both, comma and space, but the scopes in the token response are only comma separated
+	// GitHub accepts both, comma and space, but the normalized scopes in the token response are only comma separated
 	public const SCOPES_DELIMITER = ',';
 
-	public const SCOPE_USER             = 'user';
-	public const SCOPE_USER_EMAIL       = 'user:email';
-	public const SCOPE_USER_FOLLOW      = 'user:follow';
-	public const SCOPE_PUBLIC_REPO      = 'public_repo';
-	public const SCOPE_REPO             = 'repo';
-	public const SCOPE_REPO_DEPLOYMENT  = 'repo_deployment';
-	public const SCOPE_REPO_STATUS      = 'repo:status';
-	public const SCOPE_REPO_INVITE      = 'repo:invite';
-	public const SCOPE_REPO_DELETE      = 'delete_repo';
-	public const SCOPE_NOTIFICATIONS    = 'notifications';
+	// @link https://docs.github.com/en/apps/oauth-apps/building-oauth-apps/scopes-for-oauth-apps#available-scopes
+	public const SCOPE_CODESPACE        = 'codespace';
 	public const SCOPE_GIST             = 'gist';
-	public const SCOPE_REPO_HOOK_READ   = 'read:repo_hook';
-	public const SCOPE_REPO_HOOK_WRITE  = 'write:repo_hook';
-	public const SCOPE_REPO_HOOK_ADMIN  = 'admin:repo_hook';
+	public const SCOPE_GPG_KEY_ADMIN    = 'admin:gpg_key';
+	public const SCOPE_GPG_KEY_READ     = 'read:gpg_key';
+	public const SCOPE_GPG_KEY_WRITE    = 'write:gpg_key';
+	public const SCOPE_NOTIFICATIONS    = 'notifications';
+	public const SCOPE_ORG_ADMIN        = 'admin:org';
 	public const SCOPE_ORG_HOOK_ADMIN   = 'admin:org_hook';
 	public const SCOPE_ORG_READ         = 'read:org';
 	public const SCOPE_ORG_WRITE        = 'write:org';
-	public const SCOPE_ORG_ADMIN        = 'admin:org';
+	public const SCOPE_PACKAGES_DELETE  = 'delete:packages';
+	public const SCOPE_PACKAGES_READ    = 'read:packages';
+	public const SCOPE_PACKAGES_WRITE   = 'write:packages';
+	public const SCOPE_PROJECT          = 'project';
+	public const SCOPE_PROJECT_READ     = 'read:project';
+	public const SCOPE_PUBLIC_KEY_ADMIN = 'admin:public_key';
 	public const SCOPE_PUBLIC_KEY_READ  = 'read:public_key';
 	public const SCOPE_PUBLIC_KEY_WRITE = 'write:public_key';
-	public const SCOPE_PUBLIC_KEY_ADMIN = 'admin:public_key';
-	public const SCOPE_GPG_KEY_READ     = 'read:gpg_key';
-	public const SCOPE_GPG_KEY_WRITE    = 'write:gpg_key';
-	public const SCOPE_GPG_KEY_ADMIN    = 'admin:gpg_key';
+	public const SCOPE_PUBLIC_REPO      = 'public_repo';
+	public const SCOPE_REPO             = 'repo';
+	public const SCOPE_REPO_DELETE      = 'delete_repo';
+	public const SCOPE_REPO_DEPLOYMENT  = 'repo_deployment';
+	public const SCOPE_REPO_HOOK_ADMIN  = 'admin:repo_hook';
+	public const SCOPE_REPO_HOOK_READ   = 'read:repo_hook';
+	public const SCOPE_REPO_HOOK_WRITE  = 'write:repo_hook';
+	public const SCOPE_REPO_INVITE      = 'repo:invite';
+	public const SCOPE_REPO_STATUS      = 'repo:status';
+	public const SCOPE_SECURITY_EVENTS  = 'security_events';
+	public const SCOPE_USER             = 'user';
+	public const SCOPE_USER_EMAIL       = 'user:email';
+	public const SCOPE_USER_FOLLOW      = 'user:follow';
+	public const SCOPE_USER_READ        = 'read:user';
+	public const SCOPE_WORKFLOW         = 'workflow';
 
 	public const DEFAULT_SCOPES = [
 		self::SCOPE_USER,
-		self::SCOPE_USER_EMAIL,
 		self::SCOPE_PUBLIC_REPO,
 		self::SCOPE_GIST,
 	];
@@ -66,7 +75,8 @@ class GitHub extends OAuth2Provider implements CSRFToken, TokenRefresh, UserInfo
 	];
 
 	public const HEADERS_API = [
-		'Accept' => 'application/vnd.github.beta+json',
+		'Accept'               => 'application/vnd.github+json',
+		'X-GitHub-Api-Version' => '2022-11-28',
 	];
 
 	protected string      $authorizationURL = 'https://github.com/login/oauth/authorize';