diff --git a/pages/integrations/github-code-security.mdx b/pages/integrations/github-code-security.mdx new file mode 100644 index 0000000..570beee --- /dev/null +++ b/pages/integrations/github-code-security.mdx @@ -0,0 +1,35 @@ +--- +title: GitHub (Code Security) +--- + +# GitHub (Code Security) + +This integration supports Code Security scanning for GitHub. For other GitHub integration features, use the **GitHub (Cloud Security)** integration. + +## Setup + +To set up the GitHub (Code Security) integration, navigate to the **Integrations > Add integration > GitHub (Code Security)** and click **Continue**. + +### Which permissions does Oneleet require? + +Oneleet Code Security currently requires the following permissions on GitHub: + +- Repository metadata (read) +- Repository contents (read) +- Repository checks (read and write) +- Repository pull requests (read and write) + +## Updates + +### 2025-11-03 + +#### What's changing? + +We’ll soon be adding support for running Oneleet Code Security scanning as a continuous integration check on your GitHub pull requests, so you can find and remediate security issues before they're introduced to production. + +As part of this change, you should have received a message from GitHub to review and accept the following new permissions for the **Oneleet Code Security** app: + +- Read and write access to **Checks** on repositories +- Read and write access to **Pull requests** on repositories + +Once you've accepted the new permissions, you should be ready to go for pull request scanning. We'll have more to share about this feature very soon! diff --git a/pages/integrations/github.mdx b/pages/integrations/github.mdx index 64c85d3..694e606 100644 --- a/pages/integrations/github.mdx +++ b/pages/integrations/github.mdx @@ -1,23 +1,26 @@ --- -title: GitHub +title: GitHub (Cloud Security) --- -# GitHub +# GitHub (Cloud Security) + +This integration supports Cloud Security monitoring for GitHub. You can use it to monitor your GitHub configuration, user access, and Dependabot vulnerabilities. It does not require access to repository contents. ## Setup -To setup the GitHub integration, navigate to the **Integrations > Add integration > GitHub** and click **Continue**. +To set up the GitHub (Cloud Security) integration, navigate to the **Integrations > Add integration > GitHub (Cloud Security)** and click **Continue**. ### Which permissions does Oneleet require? -Oneleet currently requests the following read-only permissions within GitHub: +Oneleet currently requires the following read-only permissions on GitHub: -- Administration -- Code -- Metadata +- Repository administration +- Repository Dependabot alerts +- Repository metadata +- Repository webhooks - Organization administration -- Organization hooks -- Repository hooks +- Organization members +- Organization webhooks ### Which resources does Oneleet monitor? @@ -25,6 +28,8 @@ Oneleet currently monitors the following on GitHub: - Organizations - Repositories + - Branch protection rules + - Dependabot alerts ## Common Issues