Product

GitHub Actions adds policy controls for organization and repository owners

GitHub Actions has new settings for organizations and repository owners to limit the usage of external Actions.

Author

October 3, 2019

The ability to reuse actions from across the GitHub community is one of the most powerful features of GitHub Actions. As a developer, you can take advantage of the collective knowledge of millions of other developers just as you do in your applications. However, sometimes you just want to use Actions that your organization creates, either to have the most control over change as possible or to meet security and compliance needs.

As a first step in providing repository and organization owners with this type of control, we’ve introduced three settings at both the repository and organization level.

Enable local & third party Actions: This enables developers to use the full power of GitHub Actions from anywhere in the GitHub community—this is the default for all repositories and organizations.
Enable local Actions only: This option requires all Actions to be vendored directly into the repository with the workflow that references them.
Disable Actions: This option completely disables Actions within your organization or repository. This is useful for organizations that are not yet ready to use Actions or have a different service for CI/CD.

What’s next

We understand that these initial changes will not address everyone’s unique needs, however, they’re a good first step towards providing a rich set of controls from GitHub Actions. We look forward to collaborating with the community in other ways we can make Actions the best choice for your team. If you have questions, comments, or feedback, reach out in the community forum.

Learn more about GitHub Actions

Tags:

Responsible AI pair programming with GitHub Copilot

GitHub Copilot boosts developer productivity, but using it responsibly still requires good developer and DevSecOps practices.

Colin Dembovsky

Unboxing fork improvements

We’re always trying to improve the GitHub developer experience in meaningful ways, and we love learning from our customers. In the last several months we released several new fork capabilities, and we’re publishing revised fork documentation that gives more details with clearer explanations to make fork concepts easier to understand.

Jamie Strusz

Math support in Markdown

Mathematical expressions are key to information sharing amongst engineers, scientists, data scientists, and mathematicians. Today we are pleased to announce that math expressions can be rendered in Markdown on GitHub using $$ as a delimiter for code blocks with math content or the $ delimiter for inline math expressions.

Martin Woodward & Tali Herzka

Bringing enterprise-level security and even more power to GitHub-hosted runners

GitHub-hosted runners now support Azure private networking. Plus, we've added 2 vCPU Linux, 4 vCPU Windows, macOS L, macOS XL, and GPU hosted runners to our runner fleet.

Tanmayee Kamath

Get started with v4 of GitHub Actions Artifacts

We listened to your feedback and released new versions (v4) of actions/upload-artifact and actions/download-artifact. While this version of the actions to upload and download artifacts includes up to 10x performance improvements and several new features, there are also key differences from previous versions that may require updates to your workflows.

Konrad Pabjan & Rob Herley

GitHub-hosted runners: Double the power for open source

GitHub Actions continues its industry-leading support for the OSS community by doubling the Windows/Linux machine size to 4-vCPU runners at no cost for public repositories.

Larissa Fortuna