Skip to content

SCM Private Forks

Checks for SCM configuration that allow contributors to fork private repositories.

Examples

GitHub

Insecure Example

Insecure GitHub Configuration

Secure Example

Secure GitHub Configuration

GitHub Enterprise

If your organization is owned by a GitHub Enterprise account, you may be able to select a policy for where users are allowed to fork repositories. If your organization requires private forks, avoid allowing members to fork repositories to their user account.

Insecure Example

Insecure GitHub Enterprise Configuration

Secure Example

Secure GitHub Enterprise Configuration