Allison reports on a new GitHub setting that lets organization owners restrict who can install GitHub Apps, offering improved governance and compliance for repository management.

Controlling GitHub App Installations by Organization Owners

GitHub has released a new setting, available in public preview, that allows organization owners to specify which users are permitted to install GitHub Apps across their repositories.

Previously, any user with admin permissions—such as outside collaborators—could install GitHub Apps requesting repository-level permissions. This led to occasional unintended app installs and governance complications, especially within organizations with strict security or compliance needs.

Key Features

Restricted app installation: Organization owners can now prevent repository admins from installing GitHub Apps directly on repositories they manage.
Centralized control: Only organization owners can install Apps for organization repositories; admins must request installations from owners.
Governance and compliance support: The change strengthens controls, reduces unauthorized installations, and assists with compliance requirements.

How to Enable

Organization owners can enable this feature in their organization’s Settings:

Go to GitHub Apps under the Member privileges tab.
Toggle the checkbox that restricts repository administrators from installing GitHub Apps independently.

GitHub App Installation Setting

Feedback

Questions and feedback may be directed to the GitHub Community discussion.

This update is especially relevant for DevOps practitioners and administrators managing large-scale or compliance-focused organizations on GitHub.

This post appeared first on “The GitHub Blog”. Read the entire article here