从安全概览导出数据

从安全概览中,你可以导出 CSV 文件,其中包含用于你的组织或企业的概览、风险、覆盖范围和 CodeQL 拉取请求警报页面的数据。

谁可以使用此功能?

访问需要:

  • 组织视图:对组织中的存储库的写入访问权限
  • 企业视图:组织所有者和安全经理

具有 GitHub Secret Protection or GitHub Code Security 的 GitHub Team 帐户拥有的组织,或 GitHub Enterprise 帐户拥有的组织

在本文中

From security overview, you can download comma-separated values (CSV) files containing data from several pages of your organization or enterprise's security overview. These files can be used for efforts like security research and in-depth data analysis, and can integrate easily with external datasets.

The CSV file you download will contain data corresponding to the filters you have applied to security overview. For example, if you add the filter dependabot-alerts:enabled, your file will only contain data for repositories that have enabled Dependabot alerts.

注意

In the "Teams" column of the CSV file, each repository will list a maximum of 20 teams with write access to that repository. If more than 20 teams have write access to a repository, the data will be truncated.

Exporting overview, coverage, and risk data from your organization's security overview

  1. In the upper-right corner of GitHub, click your profile picture, then click Organizations.

  2. In the "Organizations" section, select the organization for which you would like to download security overview data.

  3. Under your organization name, click Security.

    Screenshot of the horizontal navigation bar for an organization. A tab, labeled with a shield icon and "Security," is outlined in dark orange.

  4. In the "Security" sidebar, choose the page that you want to export data from by clicking on Overview, Coverage, Risk or CodeQL pull request alerts.

  5. Next to the search bar, click Export CSV.

    It may take a moment for GitHub to generate the CSV file of your data. Once the CSV file generates, the file will automatically start downloading, and a banner will appear confirming your report is ready. If you are downloading the CSV from the overview page, you will also receive an email when your report is ready, containing a link to download the CSV.

注意

The summary views ("Overview", "Coverage" and "Risk") show data only for default alerts. Code scanning alerts from third-party tools, and secret scanning alerts for non-provider patterns or for ignored directories are all omitted from these views. Consequently, files exported from the summary views do not contain data for these types of alert.

Exporting overview, coverage, and risk data from your enterprise's security overview

  1. Navigate to GitHub Enterprise Cloud.

  2. In the top-right corner of GitHub, click your profile picture.

  3. Depending on your environment, click Enterprise, or click Enterprises then click the enterprise you want to view.

  4. At the top of the page, click Security.

  5. Choose the page that you want to export data from by clicking on Overview, Risk, or Coverage.

  6. Next to the search bar, click Export CSV.

    It may take a moment for GitHub to generate the CSV file of your data. Once the CSV file generates, the file will automatically start downloading, and a banner will appear confirming your report is ready. If you are downloading the CSV from the overview page, you will also receive an email when your report is ready, containing a link to download the CSV.