Concealed Public Repos
Overview
This feature enables you to conceal Jit’s security review comments (which might highlight mistakenly pushed secrets) in public repositories— by instead providing a summarized comment with a link to the associated pipeline on the Jit platform, accessible only to members of your GitHub organization.
To configure concealed public repos in GitHub
Add the following lines to your jit-config.yml
file, which can be found in the .jit
folder of the repo where you installed Jit's configuration files. Once configured, all public repos will use the concealed comment format.
pr_security_reviews:
public_repo_concealed_review: true
To configure concealed public repos in other SCMs
Use Jit's 'Update configuration file' API endpoint to enable a concealment of Jit’s security review comments. For more information, please see API: Update configuration file.
Updated 5 months ago