🚀Launch Week 08, April 14th - 18th, 2025🚀
Powerpipe Hub 
Hub
Mods
turbot/tailpipe-mod-github-audit-log-detections
Overview
3Dashboards
17Benchmarks
24Queries
1Variables
GitHub

Query: Top 10 Source IPs

Description

List the top 10 source IPs by frequency, excluding internal GitHub IPs.

Usage

powerpipe query github_audit_log_detections.query.activity_dashboard_events_by_source_ip

Tailpipe Tables

github_audit_log
GitHub plugin

Tags

folder = Organization

SQL

select
  tp_source_ip as "Source IP",
  count(*) as "Events"
from
  github_audit_log
where
  tp_source_ip is not null
  and tp_source_ip not like '%github.com'
group by
  tp_source_ip
order by
  count(*) desc
limit 10;

Dashboards

The query is used in the dashboards: