GitHub has released the latest version of GitHub Enterprise Server, the self-hosted version of GitHub.
“This version allows customers to choose how best to scale their security strategy and gain more control over their deployments,” GitHub wrote. blog post.
Key features of GitHub Enterprise Server 3.12 include the ability to restrict deployments to specific tag patterns, an organization-wide repository rule set that can be applied to specific workflows, merge queues, and dependency bot alert rules.
Tag patterns allow users to be more specific about what gets deployed to production via GitHub Actions, providing an additional layer of security and control. For example, a developer might specify that only items with the “Releases/” tag be deployed to production.
Another security improvement is that it can now be defined and enforced by the user. rule set Across multiple repositories. This replaces the legacy Essential Workloads feature, and all workflows that use it have been automatically migrated to Rulesets.
In GitHub Enterprise Server 3.12, new features make it easier to automate branch management. tail merge characteristic. The Marge queue automatically checks if PRs are compatible with other changes and alerts developers if there are issues. It does this by creating a temporary branch that contains the latest changes from the default branch, changes from other PRs in the queue, and changes from the current PR.
This release also adds user-configured alert rules to Defineabot, a tool for updating a project’s dependencies.
“With Dependabot, we can proactively manage security alerts to ensure that the highest priority items are displayed. With user-configured alert rules, you can now streamline the alert triage and resolution process by tailoring your security strategy to your specific risk tolerance and situational needs,” GitHub wrote.
Other features include secret scanning for non-provider patterns (beta), support for all CodeQL languages, organization-level GitHub project templates, improved global navigation, and the ability to highlight text in Markdown files.