Next Generation API Data Protection for GitHub

Next Generation API Data Protection for GitHub

Using API Data Protection involves first configuring the API connection for your GitHub app, and then creating API Data Protection policies that scan for policy violations.

To use the Next Generation API Data Protection for GitHub, first you need to install Netskope GitHub app and configure the API connection to your GitHub organization. The following sections explain how to install Netskope GitHub app and how to configure the connection.

Why you should move to Next Generation API Data Protection?

  • Dramatically simplified policy definition and management: Multi-app/all app policies and multiple DLP profiles in a single policy.

  • Ability to define threat protection policies.

  • Unified inventory page, for threat hunting and forensic analysis.

  • Ultra-low time to detect and remediate to non-compliant activities.

Capability Differences Between Classic & Next Generation API Data Protection

Here is a list of feature parity for GitHub between classic and Next Generation API Data Protection.

FeatureSub-categoryClassicNext Generation
Instance selection-YesYes (multiple)
User selectionTarget all usersYesYes
Set of user profilesYesYes
Subset of usersNoYes
Subset of user ProfilesYesYes
File SharingShare content externally (specific sharing options)Yes (make repository public)No
Add external users to organization/repository YesNo
File type to scanAll file typeNoYes
Specific file typeNoYes
DLPDLP profileYesYes (multiple)
DLP incidentNoYes
Manual remediation action (restrict access) from Incidents pageNoYes
Retroactive scan-NoYes (scan up to the last 10 days for default branch commits only)
Threat protectionThreat protection feature in instance configurationNoYes
Threat protection profile selectionNoYes
InventoryInventory dashboardYesYes (with unified Inventory page)
Inventory details panel (repository, users, file)YesYes
Manual actions for remediation (restrict to internal collaborators)NoYes
ActionAlertYesYes
Restrict access internal users NoYes
NotificationsEmail notificationsYesNo
Detection & RemediationMTTD & MTTR (Mean time to detect/resolve)FastUltra-fast
Share this Doc

Next Generation API Data Protection for GitHub

Or copy link

In this topic ...