访问企业的合规性报告

可以为企业访问 GitHub 的合规性报告,例如我们的 SOC 报告和云安全联盟 CAIQ 自我评估 (CSA CAIQ)。

谁可以使用此功能?

Enterprise owners can access compliance reports for the enterprise.

本文内容

About GitHub's compliance reports

You can access GitHub's compliance reports in your enterprise settings.

  • SOC 1, Type 2
  • SOC 2, Type 1 (GitHub Copilot Business only)
  • SOC 2, Type 2
  • Cloud Security Alliance CAIQ self-assessment (CSA CAIQ - Level 1)
  • ISO/IEC 27001:2013 certification
  • Cloud Security Alliance STAR certification (CSA STAR - Level 2)
  • GitHub Bug Bounty Quarterly reports
  • GitHub.com Services Continuity and Incident Management Plan

Accessing compliance reports for your enterprise

  1. In the top-right corner of GitHub, click your profile picture.

  2. Depending on your environment, click Enterprise, or click Enterprises then click the enterprise you want to view.

  3. At the top of the page, click Compliance.

  4. Under "Resources", to the right of the report you want to access, click Download or View.

    Screenshot of the "Resources" section of the "Compliance" page. Next to a report, a button, labeled "Download," is outlined in orange.

Further reading