GitHub
SailPoint Entro scans the GitHub ecosystem to protect your organization from secret targeted attacks.
-
Continuously scan repositories for exposed secrets across:
-
Code commits for main & side branches
-
PR descriptions
-
PR code review comments
-
Workflow Logs
-
-
Identify and track Non-Human Identities
-
Supports GitHub fine-grained tokens and GitHub IAM users
-
Ingest and correlate GitHub audit logs
-
-
Monitor GitHub Secrets for vaulted secrets management
Onboarding Methods
| Method | Description |
|---|---|
| SailPoint Entro GitHub Application (Preferred method) | Use SailPoint Entro’s trusted GitHub App for fully automated integration and continuous permission sync. |
| GitHub Personal Access Token | Use a fine-grained/classic PAT with read-only scopes. |
| GitHub Enterprise Server | Integrate SailPoint Entro to your GitHub On-premise server using a PAT |