2/28/2024 0 Comments Git hub enterprise![]() You should plan your approach to security hardening for GitHub Actions. For more information, see " Exporting audit log activity for your enterprise" and " Streaming the audit log for your enterprise." Security If your business needs require retaining this information longer than audit log data is retained, plan how you'll export and store this data outside of GitHub. You can access information about activity related to GitHub Actions in the audit logs for your enterprise. ![]() For more information, see " Using OpenID Connect with reusable workflows." You can do this by defining trust conditions on cloud roles based on reusable workflows. If you do allow third-party actions and reusable workflows, you can limit allowed actions to those created by verified creators or a list of specific actions and reusable workflows.įor more information, see " Managing GitHub Actions settings for a repository", " Disabling or limiting GitHub Actions for your organization", and " Enforcing policies for GitHub Actions in your enterprise."Ĭonsider combining OpenID Connect (OIDC) with reusable workflows to enforce consistent deployments across your repository, organization, or enterprise. You can configure the actions and reusable workflows that are allowed to run at the repository, organization, and enterprise levels and can choose to only allow actions that are created by GitHub. First, decide whether you'll allow third-party actions and reusable workflows that were not created by GitHub. You should create a plan to govern your enterprise's use of GitHub Actions and meet your compliance obligations.ĭetermine which actions and reusable workflows your developers will be allowed to use. For more information, see " About GitHub Actions for enterprises."īefore you introduce GitHub Actions to a large enterprise, you first need to plan your adoption and make decisions about how your enterprise will use GitHub Actions to best support your unique needs. With GitHub Actions, your enterprise can automate, customize, and execute your software development workflows like testing and deployments. GitHub Actions is a continuous integration and continuous delivery (CI/CD) platform that allows you to automate your build, test, and deployment pipeline.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |