Skip to main content

Enforcing policies for code security and analysis for your enterprise

You can enforce policies to manage the use of GitHub Advanced Security features within your enterprise's organizations.

Who can use this feature

Enterprise owners can enforce policies for GitHub Advanced Security in an enterprise.

GitHub Advanced Security 可用于 GitHub Enterprise Cloud 和 GitHub Enterprise Server 上的企业帐户。有关升级 GitHub Enterprise Server 实例的详细信息,请参阅“关于升级到新版本”并参阅 升级助手 以查找当前发行版本的升级路径。

About policies for GitHub Advanced Security in your enterprise

GitHub Advanced Security 帮助开发者改善和维护代码的安全性和质量。 有关详细信息,请参阅“关于 GitHub Advanced Security”。 For more information, see "About GitHub Advanced Security."

If you purchase a license for GitHub Advanced Security, any organization on your GitHub Enterprise Server instance can use Advanced Security features. You can enforce policies to control how members of your enterprise on GitHub Enterprise Server use Advanced Security.

Enforcing a policy for the use of GitHub Advanced Security in your enterprise's organizations

GitHub bills for Advanced Security on a per-committer basis. For more information, see "Managing licensing for GitHub Advanced Security."

You can enforce a policy that controls whether repository administrators are allowed to enable features for Advanced Security in an organization's repositories. You can configure a policy for all organizations owned by your enterprise account, or for individual organizations that you choose.

Disallowing Advanced Security for an organization prevents repository administrators from enabling Advanced Security features for additional repositories, but does not disable the features for repositories where the features are already enabled. For more information about configuration of Advanced Security features, see "Managing security and analysis settings for your organization" or "Managing security and analysis settings for your repository."

  1. 在 GitHub Enterprise Server 的右上角,单击你的个人资料照片,然后单击“企业设置”。 GitHub Enterprise Server 上个人资料照片下拉菜单中的“企业设置”

  2. 在企业边栏中,单击 “策略”。 企业帐户边栏中的“策略”选项卡

  3. “策略”下,单击“高级安全”。 边栏中的“高级安全”策略

  4. 在“GitHub Advanced Security(GitHub 高级安全性)”下,选择下拉菜单并单击企业拥有的组织的策略。 为企业帐户中的组织选择高级安全策略的下拉列表

  5. (可选)如果你选择“允许选定的组织”,请在组织右侧选择下拉菜单以允许或不允许组织 Advanced Security。 为企业帐户中的个别组织选择高级安全策略的下拉列表