In order to sign up and use pyup.io, you need to provide us access to your GitHub account.
In short, we ask for permission to access your email address and some permissions on your repos.
You can decide if you want to give us permissions to access your public repos only or your public and private repos.
We use Github's OAuth2 API. OAuth2 is a protocol that lets external apps request authorization to
private details in a user's GitHub account without getting their password.
Scopes let us specify exactly what type of access we need to your account. They do not grant any additional permission beyond that which the user already has.
We ask for your email address to have a channel to communicate with you. This can be a new invoice when you are using a paid plan, important changes to pyup and as a last resort when something goes wrong.
Description: Grants read access to a user's email addresses.
We need access to your respository in order to create new pull requests, read & write to your requirement files and create & delete branches. You can decide if you want us to access your public repos only or your
private and public repos.
Description: Grants read/write access to code, commit statuses, collaborators, and deployment statuses for public and private repositories and organizations.
Description: Grants read/write access to code, commit statuses, collaborators, and deployment statuses for public repositories and organizations. Also required for starring public repositories.
We need to know whenever you push new code so that we can check if you update your requirement files. We do that by creating a webhook for your
repo that sends a request to our server when that happens.
Description: Grants read, write, and ping access to hooks in public or private repositories.