Reviewing alert dismissal requests

Triage and resolve security alerts in your organization or enterprise by regularly reviewing alert dismissal requests.

누가 이 기능을 사용할 수 있나요?

액세스에는 다음이 필요합니다.

  • 조직 보기: 조직의 리포지토리에 대한 쓰기 액세스 권한
  • 엔터프라이즈 보기: 조직 소유자 및 보안 관리자

Organizations or enterprises with GitHub Secret Protection, GitHub Code Security, or GitHub Advanced Security

이 문서의 내용

Prerequisites

To receive and manage alert dismissal requests, you need to enable delegated alert dismissal. For an introduction to delegated alert dismissal and enablement instructions for specific features, see:

Reviewing requests for an organization

  1. GitHub에서 조직의 기본 페이지로 이동합니다.

  2. 조직 이름에서 보안을 클릭합니다.

    조직의 가로 탐색 모음 스크린샷 방패 아이콘과 "보안"이라는 레이블이 지정된 탭이 진한 주황색 윤곽선으로 표시되어 있습니다.

  3. In the "Requests" section of the sidebar, click any of the following options to review alert dismissal requests for the relevant feature:

    • Secret scanning alert dismissal
    • Code scanning alert dismissal
    • Dependabot alert dismissal

  4. Optionally, to filter requests by source repository, reviewer, requester, timeframe, or status, use the dropdown menus at the top of the list of requests.

  5. Click the request you want to review.

  6. Read the contents of the alert, as well as the requester's reasoning for the dismissal request.

  7. Next to the dismissal request in the alert timeline, click Review request.

  8. Provide any comments for the requester in the text box, then select either Deny request or Approve request.

  9. Click Submit review.

Reviewing requests across your enterprise

참고 항목

To review an alert dismissal request at the enterprise level, you must be an organization owner or security manager for the source organization, or be granted the necessary permissions through a custom role.

  1. GitHub의 오른쪽 위 모서리에서 프로필 사진을 클릭합니다.
  2. 환경에 따라 Enterprise를 클릭하거나 Enterprise를 클릭한 다음 보려는 엔터프라이즈를 클릭합니다.
  3. 페이지 맨 위에 있는 보안을 클릭합니다.
  4. In the "Requests" section of the sidebar, click any of the following options to review alert dismissal requests for the relevant feature:
    • Secret scanning alert dismissal
    • Code scanning alert dismissal
    • Dependabot alert dismissal
  5. Optionally, to filter requests by source organization, reviewer, requester, timeframe, or status, use the dropdown menus at the top of the list of requests.
  6. Click the request you want to review.
  7. Read the contents of the alert, as well as the requester's reasoning for the dismissal request.
  8. Next to the dismissal request in the alert timeline, click Review request.
  9. Provide any comments for the requester in the text box, then select either Deny request or Approve request.
  10. Click Submit review.