Skip to content

GitHub

SailPoint Entro scans the GitHub ecosystem to protect your organization from secret targeted attacks.

  • Continuously scan repositories for exposed secrets across:

    • Code commits for main & side branches

    • PR descriptions

    • PR code review comments

    • Workflow Logs

  • Identify and track Non-Human Identities

    • Supports GitHub fine-grained tokens and GitHub IAM users

    • Ingest and correlate GitHub audit logs

  • Monitor GitHub Secrets for vaulted secrets management


Onboarding Methods

Method Description
SailPoint Entro GitHub Application (Preferred method) Use SailPoint Entro’s trusted GitHub App for fully automated integration and continuous permission sync.
GitHub Personal Access Token Use a fine-grained/classic PAT with read-only scopes.
GitHub Enterprise Server Integrate SailPoint Entro to your GitHub On-premise server using a PAT