jprdonnelly/docs
1
0
Fork 0
mirror of synced 2025-12-20 10:28:40 -05:00
Code Issues Projects Releases Wiki Activity
Files
c774c238e21d53a513ff96d86a8e9480b51a2807
docs/content/code-security/security-overview/enabling-security-features-for-multiple-repositories.md

6.1 KiB
Raw Blame History

title, shortTitle, intro, permissions, allowTitleToDifferFromFilename, versions, type, topics
title shortTitle intro permissions allowTitleToDifferFromFilename versions type topics
Enabling security features for multiple repositories Enable security features You can use security overview to select a subset of repositories and enable security features for them all. {% data reusables.permissions.security-org-enable %} true
feature
security-configurations-beta-and-pre-beta
how_to
Security overview
Advanced Security
Alerts
Organizations
Teams

About enabling security features

If you're a security manager, repository administrator, or organization owner, you can use security overview to enable or disable security features for multiple repositories at the same time. You can enable or disable security features for all repositories visible on the "Security coverage" view in security overview for an organization.

You can use checkboxes to select which repositories you want to include, or use the search bar to narrow down to a specific subset of repositories, and enable or disable security features for that group. This is useful if you want to introduce a feature to your organization gradually over time, or if your organization requires a complex security setup where different features are enabled in different repositories. For example, if you are enabling a feature across a group of repositories, you may find the following filtering options helpful.

  • To exclude certain repositories from the selection, you can assign a topic such as test to these repositories, then exclude them from the results with a search like -topic:test. For more information, see AUTOTITLE.
  • If a team uses repositories that all require a certain feature, you can use the team: filter to search for repositories where a team has write access.
  • If you're enabling {% data variables.product.prodname_code_scanning %}, you can see which repositories are eligible for default setup with the search code-scanning-default-setup:eligible. For more information, see AUTOTITLE.{% ifversion security-overview-repository-properties %}
  • You can use custom repository properties to filter security overview to show results from specific groups of repositories. Custom properties are metadata that organization owners can add and set for repositories in an organization. For more information, see AUTOTITLE.{% endif %}

For more information on filters you can use in different parts of security overview, see AUTOTITLE.

For more information about the different ways of enabling security features in an organization, see {% ifversion security-configurations %}AUTOTITLE.{% else %}AUTOTITLE.{% endif %}

Enabling security features for multiple repositories

{% data reusables.organizations.navigate-to-org %} {% data reusables.organizations.security-overview %} {% data reusables.security-overview.security-overview-coverage-view %}

  1. You can use the search bar to narrow down visible repositories in the "Security coverage" view based on filters such as repository name or enablement status of security features.

  2. In the list of repositories, select each repository you want to modify the enablement of security features for. To select all repositories on the page, click the checkbox next to NUMBER Active. To select all repositories that match the current search, click the checkbox next to NUMBER Active and then click Select all NUMBER repos.

  3. Click Security settings next to NUMBER selected.

  4. In the side panel, next to all the security features you want to enable or disable, select Enable or Disable.

  5. As you make changes, the Apply changes button reports the number of security features you have edited. To confirm the changes, click Apply changes NUMBER. Alternatively, click {% octicon "x" aria-label="Close" %} to close the panel without making changes.

    {% data reusables.security-overview.settings-limitations %}

    Screenshot of the "Security coverage" view with the side panel open. The "Apply changes" button is highlighted in a dark orange outline.

The security features that you can enable and disable in this view are:

  • Dependency graph
  • {% data variables.product.prodname_dependabot_alerts %}
  • {% data variables.product.prodname_dependabot_security_updates %}
  • {% data variables.product.prodname_GH_advanced_security %}
  • {% data variables.product.prodname_code_scanning_caps %} default setup
  • {% data variables.secret-scanning.alerts_caps %}
  • {% data variables.product.prodname_secret_scanning_caps %} as a push protection

If you're blocked from enabling a security feature due to an enterprise policy, you will still be able to see the affected repository in the "Security Coverage" view and access the side panel from the {% octicon "gear" aria-hidden="true" %} Security settings button. However, you will see a message in the side panel indicating that the functionality is not available. For more information about enterprise policies, see AUTOTITLE.

Organization owners and security managers can use security overview to enable or disable security features for all repositories belonging to their organization. There are no enterprise policies that restrict organization owners or security managers from enabling or disabling any security features. For more information about enterprise policies, see AUTOTITLE.

Reference in New Issue View Git Blame Copy Permalink