https://github.com/github/docs/issues/27855

[pmjthusin-gif]

I think this is still not fully solved.

single_file / single_file_paths are documented in URL-parameter docs, but there is still no clear permission/capability mapping in the main GitHub App permissions docs.

In practice, it’s unclear which REST/GraphQL write APIs are expected to work with Single file scope (for example, createCommitOnBranch can fail with Resource not accessible by integration).

Could docs add a small compatibility table for Single file scope:

• supported REST endpoints
• supported/unsupported GraphQL mutations
• recommended API path for updating exactly one file

That would make least-privilege app setup much easier.

Originally posted by @DCjanus in #27855

[welcome]

Thanks for opening this issue. A GitHub docs team member should be by to give feedback soon. In the meantime, please check out the contributing guidelines.

[docs-bot]

This issue may have been opened accidentally. I'm going to close it now, but feel free to open a new issue with a more descriptive title!