Loading controls...
Control: 1.2.3 Ensure repository deletion is limited to specific users
Description
Ensure only a limited number of trusted users can delete repositories.
Rationale
Restricting the ability to delete repositories protects the organization from intentional and unintentional data loss. This ensures that users cannot delete repositories or cause other potential damage—whether by accident or due to their account being hacked—unless they have the correct privileges.
Note: Certain users will not be permitted to delete repositories.
Audit
Verify that only a limited number of trusted users can delete repositories.
Remediation
Enforce repository deletion by a few trusted and responsible users only.
Usage
Run the control in your terminal:
powerpipe control run github_compliance.control.cis_supply_chain_v100_1_2_3Snapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run github_compliance.control.cis_supply_chain_v100_1_2_3 --shareSQL
This control uses a named query:
repo_deletion_limited_to_trusted_usersParams
| Args | Name | Default | Description | Variable |
|---|---|---|---|---|
| $1 | trusted_repo_admins | | A list of GitHub users allowed to delete repositories. |