Control: Organization base permissions should be set to None
Description
Organization base permissions should be set to None to force explicit access grants to users to repositories.
Usage
Run the control in your terminal:
powerpipe control run github_compliance.control.organization_base_permissions_noneSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run github_compliance.control.organization_base_permissions_none --shareSQL
This control uses a named query:
select -- Required Columns url as resource, case when default_repo_permission is null then 'info' when default_repo_permission = 'none' then 'ok' else 'alarm' end as status, login || case when default_repo_permission is null then ' base permission unknown, manual verification required.' else ' base permission is ' || default_repo_permission || '.' end as reason, -- Additional Dimensions loginfrom github_my_organization;