Arnica Documentation
  • Introduction
  • Getting Started
    • ๐Ÿ”‘Sign Up
    • โ–ถ๏ธSCM Integrations
      • Azure DevOps
      • Bitbucket Cloud
      • Bitbucket Server & Datacenter
      • Github
        • GitHub Audit Logs
        • Github App Permissions
      • Gitlab
    • ๐Ÿ“คChatOps
      • Microsoft Teams
      • Slack
        • Adding Arnica to a New Channel
        • Interacting With the Arnica Slackbot
    • ๐ŸŽซTicket Management
      • ๐Ÿ›Jira Integration
      • ๐Ÿ“‹ADO Boards Integration
    • ๐Ÿง Artificial Intelligence
      • Azure OpenAI
      • OpenAI ChatGPT
    • ๐ŸจOn Premise Integrations
  • Inventory
    • ๐Ÿ’ผIdentities, Repositories & Organizations
    • ๐Ÿ“‡Software Bill of Materials (SBOM)
    • ๐Ÿฆ„Prioritization & Product Ownership
  • Hardcoded Secrets
    • ๐Ÿ•ต๏ธSecret Detection
    • โชRealtime Secret Mitigation
    • ๐Ÿฅ•Secrets Policy Settings
  • Code Risks
    • ๐ŸŽผStatic Application Security Testing (SAST)
      • Custom SAST Rules
    • ๐ŸงฉSoftware Composition Analysis (SCA)
    • ๐Ÿ”ก3rd Party Package Licenses
      • Override License Classifications
    • ๐Ÿคน3rd Party Package Reputation
      • Identifying Low Rep Packages
      • How to Find Alternative Packages
    • โ›…Infrastructure as Code Security (IaC)
    • ๐Ÿค–Code Risk Policy Settings
      • Developer Feedback On Push
      • Require Review Before Dismissal
      • 0 New High Severity Vulnerabilities
      • Enforce Remediation SLA
    • ๐Ÿช„Code Risk Magic Links
    • ๐Ÿ“ฆCode Risk Language and Framework Support
  • Platform Operations
    • ๐ŸšชJoining an Existing Org
    • โŒDeleting a Tenant
    • ๐Ÿซ‚How do I invite members to my tenant?
      • New User Invitations
    • ๐Ÿ‘ฅUsers & Roles
    • ๐Ÿ”‡Deleting Integrations
    • โŒ›Scheduled Jobs
      • How often do Jobs run?
    • ๐Ÿ’ธBilling
  • Security
    • ๐ŸŽฎRole Based Access Control (RBAC)
    • ๐Ÿ›ก๏ธData Handling
    • ๐Ÿ›๏ธSSO Integration
      • Okta Integration
      • Entra ID Integration
Powered by GitBook
On this page
  • Overview
  • Scope considerations
  • Required app installation permissions
  • Installation process

Was this helpful?

  1. Getting Started
  2. SCM Integrations

Github

PreviousBitbucket Server & DatacenterNextGitHub Audit Logs

Last updated 1 year ago

Was this helpful?

Overview

Arnica operates as a , which provides increased security, granular permissions, scalability, webhook support, and a better user experience compared to GitHub OAuth apps or personal access tokens.

Arnicaโ€™s Github App accesses customers' selected organizations and repositories to extract the and take remediation actions. The permissions justification can be found in the page.

Scope considerations

The higher the visibility Arnica's GitHub app gets the more beneficial results you will see. For example, a complete visibility across all repositories is necessary to determine which accounts are inactive.

Upon a successful integration, Arnica operates in a read-only mode until it is configured to take actions. It means that the installation of the application across the organizations is safe and transparent to anyone on GitHub.

Required app installation permissions

Only organization owners are able to install GitHub Apps. If you are not an organization owner, an authorization request will be sent automatically by GitHub to the organization owner.

To see the proper integration in your Arnica tenant, please .

Installation process

  1. to Arnica.

  2. Navigate to the Integration page in the Admin menu section.

  3. Under the GitHub.com widget, click on Add. If you need to integrate a GitHub Enterprise Server, please click on the Add button and we will reach out to you to with the installation instructions.

  4. You will be redirected to GitHub's application installation page. Select the applicable organization.

Arnica supports an integration with organization accounts only. It means that integrations with personal accounts are prohibited.

  1. Select the desired scope and click on Install & Authorize.

  2. If you have the proper permission, the page will redirect to Arnica's app and show the kicked off jobs. Otherwise, please ensure you have an organization owner permission or the owner is invited to your tenant.

The application installation process needs to be applied per GitHub organization. If you have multiple organizations, please follow steps 2 to 6 above for each organization.

โ–ถ๏ธ
Github App
necessary data
GitHub App Permissions
invite the organization owner to your Arnica tenant
Login