Enterprise Should Automatically Enable Secret Scanning Push Protection Across All Organizations/Repositories
policy name: enable_push_protection_secret_scanning
The enterprise should prevent sensitive data from being pushed to all repositories, to prevent it from being exposed to anyone with access to the repository.
- Make sure you are an enterprise owner
- Go to the Enterprise Settings page
- Under the ‘Settings’ tab choose ‘Code security and analysis’
- Check ‘Automatically enable for repositories added to secret scanning’