Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat(github): add new check repository_code_changes_multi_approval_requirement #6002

Draft
wants to merge 52 commits into
base: github-poc
Choose a base branch
from

Conversation

HugoPBrito
Copy link
Member

Context

Code reviews ensure the quality and security of software changes by requiring them to be assessed and approved by peers. Mandating that at least two team members, authenticated via Multi-Factor Authentication (MFA), approve changes helps prevent unauthorized or erroneous code from being integrated. This reduces risks associated with malicious activities or mistakes and strengthens overall repository integrity.

Description

This check enforces branch protection rules on GitHub repositories, requiring pull requests to be reviewed and approved by at least two authenticated team members before merging. This addition directly addresses the risks of unauthorized changes and ensures compliance with secure code review practices.

Checklist

License

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

dependabot bot and others added 30 commits November 27, 2024 10:16
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: sergargar <38561120+sergargar@users.noreply.github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…5938)

Co-authored-by: Rubén De la Torre Vico <rubendltv22@gmail.com>
Co-authored-by: Rubén De la Torre Vico <ruben@prowler.com>
Co-authored-by: Rubén De la Torre Vico <rubendltv22@gmail.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.