Using Codecov with GitHub IP allow list

bsheen · November 10, 2020, 11:12am

Hi. we use GitHub IP allow list

IP allow list
An IP allow list lets your organization limit access based on the IP address a person is accessing from.

More information here:

When Enable IP allow list is checked.

Enabling will allow you to restrict access by IP address to resources owned by this organization.

We get this error on Codecov:

Unauthorized

Github API: Forbidden.
Check on Codecov’s status or see our docs for common support.
Error 403

When trying to access the Github repos settings on Codecov (note: unchecking Enable IP allow list and saving on Github restores access to repos settings on Codecov ).

Is there a set of Codecov IP addresses that we could add to the IP allow list?

tom · November 23, 2020, 12:41am

Hi @bsheen, thanks for this. Unfortunately, we do not have a set of IP addresses that can be currently used for this purpose. I have, however, let the product team know, and I’ll update this thread if that changes.

bsheen · November 23, 2020, 1:12am

Ok, thanks for letting me know.

tom · December 8, 2020, 4:28am

Hi @bsheen, just a quick question, is this a restriction that is placed on every service that touches your repos?

bsheen · December 8, 2020, 8:30pm

Yes. IP address(es) for a service are not on the IP allow list then Github returns the following error:

tom · December 8, 2020, 11:52pm

@bsheen, thanks! We’ll take a look to see what we can do here.

tbennun · April 27, 2022, 7:47am

Are there any news about this topic? It would be great if there is anything we could use. We have a lot of variability in coverage and slowdown in our CI due to it trying to communicate with codecov (and failing) 5 times in a row.

tom · May 2, 2022, 11:53pm

@tbennun do you mind opening a new topic on this? I’m not convinced that this topic is related to what you are seeing. I’d like to try to diagnose first.

matt-olds · May 18, 2022, 12:47am

Is there any progress on this request? GitHub allows installed apps to configure and provide their own list of IPs for use by all customers that have the app installed (CodeCov) and would like to enforce the restriction.

tom · May 24, 2022, 5:48pm

@matt-olds no, unfortunately, we aren’t able to provide this yet. I’ll let the product team know.

karsky · February 14, 2023, 10:30am

Hey @tom, has the team made any progress on the Github IP allow list for installed apps?

tom · February 14, 2023, 6:05pm

Hi @karsky, to be honest, there hasn’t been enough feedback to prioritize this as an issue. I would strongly recommend posting here to get traction.

tonywildey-valstro · February 15, 2023, 7:03pm

We are in the same boat here

Topic		Replies	Views
Codecov GitHub App: single repo authed, but no OAuth access to the wider GitHub Organisation Support github	2	123	November 11, 2022
Support Azure DevOps git repository and private build pipelines Feature Requests	7	872	October 20, 2020
Bitbucket Cloud - IP Whitelist Support Support bitbucket	1	237	March 17, 2022
Can't Disable GitHub Annotations in Team YAML Support	2	301	September 22, 2020
Can't access Organization private repos Support	12	2344	July 6, 2021

Using Codecov with GitHub IP allow list

Unauthorized

Related Topics