b3ac0749c2
Co-authored-by: Anne-Marie <102995847+am-stead@users.noreply.github.com> Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> Co-authored-by: Zack Fernandes <zackfern@github.com> Co-authored-by: Melanie Yarbrough <11952755+myarb@users.noreply.github.com>
4.4 KiB
title, shortTitle, intro, permissions, versions, topics
| title | shortTitle | intro | permissions | versions | topics | |||||
|---|---|---|---|---|---|---|---|---|---|---|
| Applying the GitHub-recommended security configuration in your organization | Apply recommended configuration | Secure your code with the security enablement settings created, managed, and recommended by {% data variables.product.company_short %}. | {% data reusables.permissions.security-org-enable %} |
|
|
About the {% data variables.product.prodname_github_security_configuration %}
The {% data variables.product.prodname_github_security_configuration %} is a collection of enablement settings for {% data variables.product.company_short %}'s security features that is created and maintained by subject matter experts at {% data variables.product.company_short %}. The {% data variables.product.prodname_github_security_configuration %} is designed to successfully reduce the security risks for low- and high-impact repositories. We recommend you apply this configuration to all the repositories in your organization.
Applying the {% data variables.product.prodname_github_security_configuration %} to all repositories in your organization
{% data reusables.profile.access_org %} {% data reusables.organizations.org_settings %} {% data reusables.security-configurations.view-configurations-page %}
-
In the "{% data variables.product.company_short %} recommended" row of the configurations table for your organization, select the Apply to {% octicon "triangle-down" aria-hidden="true" %} dropdown menu, then click All repositories or All repositories without configurations. {% data reusables.security-configurations.apply-configuration-by-default %}
{% data reusables.security-configurations.default-configuration-exception-repo-transfers %}
{% data reusables.security-configurations.apply-configuration %}
Applying the {% data variables.product.prodname_github_security_configuration %} to specific repositories in your organization
{% data reusables.profile.access_org %} {% data reusables.organizations.org_settings %} {% data reusables.security-configurations.view-configurations-page %}
-
Optionally, in the "Apply configurations" section, filter the view to find the repositories you would like to apply the {% data variables.product.prodname_github_security_configuration %} to. To learn how to filter the repository table, see AUTOTITLE.
-
In the repository table, select repositories with one of three methods:
- Select each individual repository you would like to apply the {% data variables.product.prodname_security_configuration %} to.
- To select all repositories on the current page of the repository table, select NUMBER repositories.
- After selecting NUMBER repositories, to select all repositories in your organization that match your filter criteria, click Select all.
-
Select the Apply configuration {% octicon "triangle-down" aria-hidden="true" %} dropdown menu, then click {% data variables.product.company_short %} recommended. {% data reusables.security-configurations.apply-configuration-by-default %}
{% data reusables.security-configurations.default-configuration-exception-repo-transfers %}
{% data reusables.security-configurations.apply-configuration %}
Enforcing the {% data variables.product.prodname_github_security_configuration %}
{% data reusables.profile.access_org %} {% data reusables.organizations.org_settings %} {% data reusables.security-configurations.view-configurations-page %}
- In the "Code security configurations" section, select "{% data variables.product.company_short %} recommended".
- In the "Policy" section, next to "Enforce configuration", select Enforce from the dropdown menu.
{% data reusables.code-scanning.custom-security-configuration-enforcement-edge-cases %}
Next steps
After you apply the {% data variables.product.prodname_github_security_configuration %}, you can customize your organization-level security settings with {% data variables.product.prodname_global_settings %}. See AUTOTITLE.
{% data reusables.security-configurations.troubleshooting-next-step %}