Skip to main content

GitHub AE는 현재 제한된 릴리스 상태입니다.

리포지토리에 대한 보안 및 분석 설정 관리

GitHub에서 프로젝트의 코드를 보호하고 분석하는 기능을 제어할 수 있습니다.

이 기능을 사용할 수 있는 사용자

People with admin permissions to a repository can manage security and analysis settings for the repository.

Enabling or disabling security and analysis features

You can manage the security and analysis features for your repository.

  1. On your enterprise, navigate to the main page of the repository.

  2. Under your repository name, click Settings. If you cannot see the "Settings" tab, select the dropdown menu, then click Settings. Screenshot of a repository header showing the tabs. The "Settings" tab is highlighted by a dark orange outline.

  3. In the "Security" section of the sidebar, click Code security and analysis.

  4. Under "Code security and analysis", to the right of the feature, click Disable or Enable. Before you can enable "secret scanning" for your repository, you may need to enable GitHub Advanced Security.

Granting access to security alerts

Security alerts for a repository are visible to people with admin access to the repository and, when the repository is owned by an organization, organization owners. You can give additional teams and people access to the alerts.

Organization owners and repository administrators can only grant access to view security alerts, such as secret scanning alerts, to people or teams who have write access to the repo.

  1. On your enterprise, navigate to the main page of the repository.
  2. Under your repository name, click Settings. If you cannot see the "Settings" tab, select the dropdown menu, then click Settings. Screenshot of a repository header showing the tabs. The "Settings" tab is highlighted by a dark orange outline.
  3. In the "Security" section of the sidebar, click Code security and analysis.
  4. Under "Access to alerts", in the search field, start typing the name of the person or team you'd like to find, then click a name in the list of matches.
  5. Click Save changes.

Removing access to security alerts

  1. On your enterprise, navigate to the main page of the repository.

  2. Under your repository name, click Settings. If you cannot see the "Settings" tab, select the dropdown menu, then click Settings. Screenshot of a repository header showing the tabs. The "Settings" tab is highlighted by a dark orange outline.

  3. In the "Security" section of the sidebar, click Code security and analysis.

  4. Under "Access to alerts", to the right of the person or team whose access you'd like to remove, click .

    Screenshot of the list of users with access to alerts. To the right of @octocat, an x icon is outlined in dark orange.

  5. Click Save changes.

Further reading