Managing GitHub Advanced Security features for your enterprise

You can control GitHub Advanced Security features that secure and analyze code across all organizations owned by your enterprise.

Who can use this feature?

Enterprise owners can manage Advanced Security features for organizations in an enterprise.

About management of Advanced Security features

You can use Advanced Security features to harden security for the organizations in your enterprise.

You can quickly enable security features at scale with the GitHub-recommended security configuration, a collection of security enablement settings you can apply to repositories in an organization. You can then further customize GitHub Advanced Security features at the organization level with global settings. See About enabling security features at scale.

To manage individual GitHub Advanced Security features, you can enable or disable each feature for all existing and/or new repositories within the organizations owned by your enterprise.

Security configurations simplify the rollout of GitHub security products at scale by helping you define collections of security settings and apply them across your enterprise. For more information, see About security configurations.

We recommend securing your enterprise with the GitHub-recommended security configuration, then evaluating the security findings on your repositories before configuring custom security configurations. For more information, see Applying the GitHub-recommended security configuration to your enterprise.

With custom security configurations, you can create collections of enablement settings for GitHub's security products to meet the specific security needs of your enterprise. For example, you can create a different custom security configuration for each organization or group of similar organizations to reflect their different levels of security requirements and compliance obligations. For more information, see Creating a custom security configuration for your enterprise.

You can also enable or disable Advanced Security features via the API. For more information, see REST API endpoints for secret scanning in the REST API documentation.

For information about buying a license for GitHub Advanced Security, see Signing up for GitHub Advanced Security.

If you have disallowed GitHub Advanced Security for an organization, that organization will not be affected by enabling a feature for all existing repositories or for all new repositories. For more information about disallowing GitHub Advanced Security for an organization, see Enforcing policies for code security and analysis for your enterprise.

When you enable one or more security and analysis features for existing repositories, you will see any results displayed on GitHub within minutes.

If you enable security and analysis features, GitHub performs read-only analysis on your repository.