Allison presents a summary of GitHub Enterprise Server 3.19’s new features, covering updates to repository creation, security, policy management, and administrative roles for enterprise developers and administrators.

GitHub Enterprise Server 3.19 Release Highlights

GitHub Enterprise Server (GHES) 3.19 introduces several updates designed to streamline enterprise development workflows, bolster security, and enhance monitoring and policy enforcement.

Key New Features

  • Repository Creation Flow: An improved, user-friendly interface enables administrators to collect and enforce repository metadata and custom properties at creation. This supports consistent configuration across teams. More details.

  • Advanced Ruleset Management:
    • Ruleset history provides versioning and rollback capability.
    • Admins can import/export rulesets for easier sharing and application, including templates from GitHub’s ruleset-recipes.
    • Read the documentation for more.
  • Workflow Security - SHA Pinning & Blocking:
    • Administrators can require workflows to only use actions referenced by SHA, blocking unapproved or mutable actions.
    • These policies help maintain workflow security and supply chain integrity. Learn more.
  • Expanded App Manager Roles:
    • Organizations and teams can now be assigned as GitHub App managers, with granular role support. App managers may update app registrations but cannot manage installations.
    • Refer to GitHub App Managers for details.
  • Metrics Transition:
    • OpenTelemetry metrics are now enabled by default for new installations, phasing out Collectd over coming releases.
    • Metrics setup can be changed per organizational needs. Documentation is available here.
  • SSH and TLS Cipher Suite Configuration:
    • Administrators can now customize cipher suites for SSH and TLS, enabling the exclusion of weak ciphers and the enforcement of enterprise security standards. Details can be found here.

Additional Resources

These improvements in repository management, workflow security, monitoring, and app administration provide technical teams with more control, better traceability, and stronger security compliance.

This post appeared first on “The GitHub Blog”. Read the entire article here