Notes

GitHub Enterprise Server Adds Code Security, Automation Features

What is Git? Control of version is vital for collaborative programming



Home Software Development GitHub



GitHub Enterprise Server adds code security, automation capabilities



Update to the software used by GitHub to manage repositories on private servers features GitHub Container Registry access as well as Dependabot security alerts and updates, as well as workflows that can be reused.



By Paul Krill



Editor at Large, InfoWorld |



GitHub Enterprise Server 3.5, the latest version of GitHub's software for hosting and managing repositories on private servers, introduces new code security features as well as new automation capabilities and access to the GitHub Container Registry, which is now in public beta.



GitHub Enterprise Server 3.5 will be available on May 31. It is accessible from the GitHub Enterprise website. Access to the GitHub Container Registry is now accessible via the management console. Developers can configure fine-grained permissions control for containers as well as internal visibility settings for containers within organizations in addition to Public and Private. Also data can be shared at an organizational level, reducing the bandwidth and storage requirements. Developers can also secure access containers through workflows using GITHUB_TOKEN.



[ Also on InfoWorld: The GitHub Copilot preview gives us hope ]



Dependabot automated dependency updates are available in GitHub Enterprise Server 3.5. Dependabot offers three services: Alerts to notify users of vulnerabilities in dependencies when they are detected; Security Updates to upgrade the dependency when the vulnerability is discovered by opening pull requests in a repo; Version updates to keep all dependencies current and minimize vulnerability exposure.



Other capabilities in GitHub Enterprise Server 3.5 include:



- Anonymous access to public containers. This allows users to access the containers without needing credentials. The audit log now includes Git events. Storage and management of Open Container Initiative (OCI), images. - GitHub Advanced Security users now can block pushes that contain secrets. Mccainsource They also have access to the security overview at the organization and enterprise levels. GitHub Enterprise Server can now be kept in a healthy state so that production traffic continues to flow even after operational changes. Administrators can restrict access to the appliance to a certain number of IP addresses. - Users can collect 41 GitHub Enterprise Server metrics that let them analyze how they are using the platform. Reusable workflows that are part of GitHub Actions, formerly known as templates, are now generally available. - GitHub Actions now allows users to store intermediate outputs and dependencies for workflows. This makes workflows more efficient.


Here's my website: https://mccainsource.com/