zlacker

[parent] [thread] 3 comments
1. devit+(OP)[view] [source] 2020-04-14 20:26:45
Probably not very smart to use this feature, since your so-called "private" repository is an exploit or a leaking employee away from becoming public.

Instead, use a self-hosted Gitlab instance or similar, preferably with an external firewall preventing outbound and non-team inbound connections if feasible.

replies(2): >>ectosp+y2 >>xapata+Y7
2. ectosp+y2[view] [source] 2020-04-14 20:44:15
>>devit+(OP)
Your proposed solution handles neither the rogue employee nor the exploit scenario. It does incur a lot of additional cost in maintenance.
3. xapata+Y7[view] [source] 2020-04-14 21:13:12
>>devit+(OP)
How would that solve the "leaking employee" case?
replies(1): >>devit+uj1
◧◩
4. devit+uj1[view] [source] [discussion] 2020-04-15 10:04:18
>>xapata+Y7
Sorry, I meant "leaking employee of GitHub", not "leaking employee of your organization".
[go to top]