This version of GitHub Enterprise was discontinued on 2023-03-15. No patch releases will be made, even for critical security issues. For better performance, improved security, and new features, upgrade to the latest version of GitHub Enterprise. For help with the upgrade, contact GitHub Enterprise support.

End-to-end supply chain

How to think about securing your user accounts, your code, and your build process

Securing your end-to-end supply chain
Introducing best practice guides on complete end-to-end supply chain security including personal accounts, code, and build processes.
Best practices for securing accounts
Guidance on how to protect accounts with access to your software supply chain.
Best practices for securing code in your supply chain
Guidance on how to protect the center of your supply chain—the code you write and the code you depend on.
Best practices for securing your build system
Guidance on how to protect the end of your supply chain—the systems you use to build and distribute artifacts.

Securing your end-to-end supply chain