Automating audits of GitHub orgs for Security/Cost
To improve security, Cisco moved existing Cisco-owned GitHub.com orgs to an enterprise account. However, it quickly became evident that to onboard over 50 orgs, we needed an automated audit process to improve security and to manage license costs.
This presentation will cover some of the recommended policies and settings we determined were most useful—and how Cisco has implemented these changes to protect our intellectual property, while minimizing productivity impacts. We’ll also share how we used GraphQL commands to audit the orgs and the users.