reduce oauth permission scopes

Signed-off-by: Kaxada <[email protected]>

Author: kaxada

providers/github/auth.js

@@ -33,15 +33,15 @@ const githubAuth = (req, res) => {
   }
 
   if (type === "event-badging") {
-    const scopes = ["repo"];
+    const scopes = ["public_repo"];
     const encryptedFormData = encrypt(JSON.stringify(req.body));
     const url = `https://github.com/login/oauth/authorize?client_id=${
       process.env.GITHUB_AUTH_CLIENT_ID
     }&scope=${scopes.join(",")}&state=${encryptedFormData}`;
 
     res.send({ authorizationLink: url });
   } else {
-    const scopes = ["user", "repo"];
+    const scopes = ["user", "public_repo"];
     const url = `https://github.com/login/oauth/authorize?client_id=${
       process.env.GITHUB_AUTH_CLIENT_ID
     }&scope=${scopes.join(",")}`;