By default, a codespace can only access the repository where it was created. When you enable access and security for a repository owned by your organization, any codespaces that are created for that repository will also have read permissions to all other repositories the organization owns and the codespace creator has permissions to access. If you want to restrict the repositories a codespace can access, you can limit it to either the repository where the codespace was created, or to specific repositories. You should only enable access and security for repositories you trust.
To manage which users in your organization can use Codespaces, see "Managing user permissions for your organization."
- In the top right corner of GitHub.com, click your profile photo, then click Your organizations.
- Next to the organization, click Settings.
- In the left sidebar, click Codespaces.
- Under "Access and security", select the setting you want for your organization.
- If you chose "Selected repositories", select the drop-down menu, then click a repository to allow the repository's codespaces to access other repositories owned by your organization. Repeat for all repositories whose codespaces you want to access other repositories.