I am looking to build my own GitHub Security Posture Dashboard. Here is what I am looking to achieve -
I like to have drop down for each GitHub Organization. - This should give me an overview of each repositories which are non-compliant such as
Push protection, Branch protection not enabled, Secret scanning is not mandatory.I want to see the overall security posture of all Org.
Individual Org owners and their permission.
The staled repos - meaning if they have been idle for 6 months without any PR.
What kind of permission do it need to get started to pull this level od details from the GitHub.
I like to start with this and add more but I am not sure how and what can I be using.
I have security background, and do scripting but not a developer by any mean.
Thanks in advance for your support.
Top comments (0)