Follow these steps to set up and install the Nightfall for Github integration
To install the Nightfall App for Github, please follow the steps outlined below:
Navigate to the Nightfall Console, and select Github from the integration list on the left:
You will be prompted to authenticate GitHub here.
To install the Nightfall app in the GitHub organizations you would like to scan, you will need to be an owner of those GitHub organizations.
Note: There is no need for a machine user / IT service account. If the person who installed the app on a given organization is removed as a GitHub user for that organization, the app will continue to work without interruption.
Choose the organization/repos that you would like to expose the Nightfall app to:
The app can be installed upon a full organization, and from there, the options for Repo scanning are as follows:
This gives you the option to filter out which repos you would like to exclude from scanning. It also gives you the ability to select all repos, which will automatically apply to all future repos that are created as well.
Note: As mentioned in the screenshot above, it only gives the Nightfall App Read access to code, commit statuses, members, and metadata.
Once you select the option to Install & Authorize, you will be redirected back to the Nightfall console, and the organization from Github should be visible from the console.