GitHub

GitHub is a tool that allows developers to create, store, manage and share their code.

Usage of Github in Delivery Shield

  • Delivery Shield can run security analysis to identify the GitHub security posture using frameworks such as OpenSSF Scorecard.

  • It also collects metadata such as repository name, branch, list of commits, approvers etc., to perform supply chain security-related analysis and populate it on the DBOM for audit purposes.

  • It can run security scans such as SAST, Secret Scan and license scan on GitHub repositories.

To Integrate Delivery Shield:

  1. Navigate to Setup > Integrations.

  2. In the Source panel, click Github.

You can use the toggle button provided below the integration tile to enable or disable it as needed.

  1. The Github integration page is displayed.

  1. Enter the API URL and Token values of your Github account.

  2. Click Save. The tool is integrated in the source stage.

  3. To delete the integration, click the Delete button.

  4. You can edit the entered Github values by clicking the Edit option as shown below:

  1. Enter the new URL and token value and click Update.

The new values get updated.

PreviousIntegrating CI and CD tools in Delivery ShieldNextGitLab

Last updated