Skip to content

BoostSecurity

Cicd scm gh audit log branch protection disabled

Waiting for next sprint¶

---¶

title: Audit Log - Branch Protection Disabled¶

shortname: cicd-scm-gh-audit-log-branch-protection-disabled¶

description: Checks for GitHub repositories where an Audit Log event indicates that an existing Branch Protection was disabled.¶

anchor: cicd¶

pretty_name: CI/CD - Audit Log - Branch Protection Disabled¶

---¶

¶

A branch_protection_rule event was detected for an existing branch protection.

Different scenarios can be detected by this rule:

branch_protection_rule.deleted: An existing rule was deleted.
branch_protection_rule.edited:
- The rule pattern was changed (potentially not matching the branch that should be protected)
- The review enforcement level was changed
- The enforcement for administrators was relaxed
- The protection against force pushes was lifted
- The protection against deletions was lifted

More information¶

GitHub Documentation - branch_protection_rule webhook event