About GitHub
| Limited Availability: GitHub integration is a Limited Availability feature. To enable API access for your GitHub instance, contact Skyhigh Support. |
It is essential to secure, scale, and audit the application integrations as more software development organizations adopt GitHub for source code management. Integrate Skyhigh CASB with GitHub to monitor user activity in GitHub, enforce DLP policies, and review threats detected by Skyhigh CASB User and Entity Behavior Analytics (UEBA) and machine learning algorithms.
Skyhigh offers two different integration types for GitHub. Both authorize external services to interact with GitHub resources. However, they differ significantly in scope, security, governance, and long-term maintainability:
- OAuth Apps. It provides an easy method to access GitHub resources, with opportunities to enhance security granularity, auditability, and governance for large- scale environments. OAuth apps have lower rate limits. To integrate Skyhigh CASB with GitHub OAuth App, see Integrate Skyhigh CASB with GitHub OAuth App.
- GitHub Apps. It provides a strong alternative, making it more compatible with enterprise security and operational needs. The rate limit for GitHub Apps using an installation access token scales with the number of repositories and organization users. To integrate Skyhigh CASB with GitHub App, see Integrate Skyhigh CASB with GitHub App.
You can integrate GitHub using OAuth Apps or GitHub Apps to keep up with future changes and improve security in your development processes.
NOTE: Skyhigh CASB only supports GitHub repositories hosted in GitHub Cloud (GitHub.com). It does not support repositories hosted in your infrastructure or any IaaS environments.
Activity Monitoring
Security Operations Center (SOC) admins can monitor GitHub’s user activity in Skyhigh CASB’s Activity Monitoring page.
Skyhigh CASB monitors all the activities mentioned in the GitHub API Documentation.
Data Loss Prevention
Integrating Skyhigh CASB with GitHub enables comprehensive Data Loss Prevention (DLP) controls, helping to prevent data leaks and ensure compliance with data privacy regulations. You can create a DLP policy with the supported policy rules and response actions to detect sensitive content and provide remediation actions for the following GitHub activities:
- File Commit
- Commit Comment
- Issue
- Issue Comment
- Pull request
- Pull request review
- Pull request review comment
Supported DLP Policy Rules and Response Actions in GitHub
The table below lists the supported DLP policy rules and response actions.
| DLP Policy Rules |
|---|
|
Data Identifiers |
| File Name |
| File Size |
| File Type |
| Keyword |
| Regex |
| DLP Policy Response Actions |
|---|
| Incident |
| Email Notifications |
Threat Protection
SOC Admins can review threats and anomalies using the Threats and Anomalies pages.
GitHub with Skyhigh CASB
After integrating GitHub with Skyhigh CASB, you can monitor the GitHub activity events and real-time DLP event counts on the Service Management page, and GitHub user activities on the Activities page:
- Select GitHub For Business from the Services to view the monitored GitHub activity events and real-time DLP event counts on the Service Management page (Settings > Service Management).
- Select GitHub For Business as the service name to view the GitHub user activities on the Activities page (Incidents > User Activity > Activities).
