Oneleet · ian-oneleet · Nov 3, 2025 · Oct 14, 2025 · Oct 14, 2025 · Oct 14, 2025
diff --git a/pages/integrations/github-code-security.mdx b/pages/integrations/github-code-security.mdx
@@ -0,0 +1,35 @@
+---
+title: GitHub (Code Security)
+---
+
+# GitHub (Code Security)
+
+This integration supports Code Security scanning for GitHub. For other GitHub integration features, use the **GitHub (Cloud Security)** integration.
+
+## Setup
+
+To set up the GitHub (Code Security) integration, navigate to the **Integrations > Add integration > GitHub (Code Security)** and click **Continue**.
+
+### Which permissions does Oneleet require?
+
+Oneleet Code Security currently requires the following permissions on GitHub:
+
+- Repository metadata (read)
+- Repository contents (read)
+- Repository checks (read and write)
+- Repository pull requests (read and write)
+
+## Updates
+
+### 2025-10-14
+
+#### What's changing?
+
+We’ll soon be adding support for running Oneleet Code Security scanning as a continuous integration check on your GitHub pull requests, so you can find and remediate security issues before they're introduced to production.
+
+As part of this change, you should have received a message from GitHub to review and accept the following new permissions for the **Oneleet Code Security** app:
+
+- Read and write access to **Checks** on repositories
+- Read and write access to **Pull requests** on repositories
+
+Once you've accepted the new permissions, you should be ready to go for pull request scanning. We'll have more to share about this feature very soon!
diff --git a/pages/integrations/github.mdx b/pages/integrations/github.mdx
@@ -1,30 +1,35 @@
 ---
-title: GitHub
+title: GitHub (Cloud Security)
 ---
 
-# GitHub
+# GitHub (Cloud Security)
+
+This integration supports Cloud Security monitoring for GitHub. You can use it to monitor your GitHub configuration, user access, and Dependabot vulnerabilities. It does not require access to repository contents.
 
 ## Setup
 
-To setup the GitHub integration, navigate to the **Integrations > Add integration > GitHub** and click **Continue**.
+To set up the GitHub (Cloud Security) integration, navigate to the **Integrations > Add integration > GitHub (Cloud Security)** and click **Continue**.
 
 ### Which permissions does Oneleet require?
 
-Oneleet currently requests the following read-only permissions within GitHub:
+Oneleet currently requires the following read-only permissions on GitHub:
 
-- Administration
-- Code
-- Metadata
+- Repository administration
+- Repository Dependabot alerts
+- Repository metadata
+- Repository webhooks
 - Organization administration
-- Organization hooks
-- Repository hooks
+- Organization members
+- Organization webhooks
 
 ### Which resources does Oneleet monitor?
 
 Oneleet currently monitors the following on GitHub:
 
 - Organizations
 - Repositories
+  - Branch protection rules
+  - Dependabot alerts
 
 ## Common Issues