- admin-rule:
    name: admin
    conditions:
      - resource_access.zuul.roles: "admin"

- admin-rule:
    name: tenant-group
    conditions:
      - groups: "{tenant.name}"

- tenant:
    name: scs
    admin-rules:
      - admin
      - tenant-group
    exclude-unprotected-branches: true
    report-build-page: true
    max-nodes-per-job: 5
    source:
      gitea:
        config-projects:
          - scs/zuul-config
          - scs/base-jobs
        untrusted-projects: []

      opendev:
        untrusted-projects:
          - zuul/zuul-jobs:
              shadow:
                - scs/project-config