New enterprise policies for code security

Enterprise owners can now configure whether repository administrators can enable or disable Dependabot alerts.

If you are owner of an enterprise with GitHub Advanced Security, you can now also set policies to allow or disallow repository administrators access to enablement for:

  • GitHub Advanced Security
  • Secret scanning

image

Learn more about enterprise policies for code security and send us your feedback

You can now hide individual Achievements.
Navigate to Achievements on your profile sidebar and click on an achievement to get started. Once in the detail view, the eye icon will indicate the current visibility of the achievement. Click on the eye icon to hide the achievement. When hidden, they are only visible to you.
achievements-detail-view

You can still opt out of Achievements as a whole in your Profile Settings.

For more information, see Changing the visibility of Achievements. If you have any feedback to help us improve Achievements, be sure to post it in our discussions forum.

See more

GitHub Enterprise Cloud customers can now stream their audit log to a Datadog endpoint. Enterprise owners need to be able to use the right tools for their job, whether that be short-term investigation or longer-term threat analysis and prevention. With audit log streaming to Datadog, customers can be assured that:

  • no audit log event will be lost,
  • they may satisfy longer-term data retention goals, and
  • they can analyze GitHub's audit log data using Datadog products.

For GitHub Enterprise Server customers, this feature is planned to come to GHES 3.8.

For additional information, read our documentation about setting up streaming to Datadog.

See more