Skip to content
Waiting for next sprint


title: Audit Log - Branch Protection Disabled

shortname: cicd-scm-gh-audit-log-branch-protection-disabled

description: Checks for GitHub repositories where an Audit Log event indicates that an existing Branch Protection was disabled.

anchor: cicd

pretty_name: CI/CD - Audit Log - Branch Protection Disabled


A branch_protection_rule event was detected for an existing branch protection.

Different scenarios can be detected by this rule:

  • branch_protection_rule.deleted: An existing rule was deleted.
  • branch_protection_rule.edited:

    • The rule pattern was changed (potentially not matching the branch that should be protected)
    • The review enforcement level was changed
    • The enforcement for administrators was relaxed
    • The protection against force pushes was lifted
    • The protection against deletions was lifted

More information