GitHub Enterprise Cloud

GitHub Enterprise Cloud (GHEC) is GitHub's SaaS offering that hosts organizations and enterprises on GitHub.com, or on a dedicated SUBDOMAIN.ghe.com host when data residency is required. GH-100 contrasts it with the self-hosted GitHub Enterprise Server.

All GH-100 Terms

GitHub Enterprise Cloud

GitHub Enterprise Cloud (GHEC) is GitHub's SaaS offering that hosts organizations and enterprises on GitHub.

GitHub Enterprise Server

GitHub Enterprise Server (GHES) is the self-hosted version of GitHub that runs in an organization's own infrastructure.

Enterprise Managed Users (EMU)

Enterprise Managed Users (EMU) is a GitHub Enterprise Cloud model where user accounts are fully created and controlled by the enterprise's identity provider.

SAML SSO

SAML SSO is single sign-on that authenticates GitHub users against an external identity provider using the SAML standard.

SCIM

SCIM (System for Cross-domain Identity Management) is the protocol GitHub uses to automate identity management from an identity provider — provisioning full user accounts for Enterprise Managed Users, and managing organization membership and linked identities for non-EMU Enterprise Cloud.

Team Synchronization

Team Synchronization links GitHub teams to identity-provider groups so that membership stays in sync automatically, and is used mainly by SAML enterprises with personal accounts.

Ruleset

A Ruleset is a named set of rules that controls how users can interact with branches, tags, and repositories across an organization or enterprise.

Repository Roles

Repository Roles are the permission levels — such as read, triage, write, maintain, and admin — that determine what a member can do in a repository.

GitHub Actions

GitHub Actions is GitHub's built-in automation and CI/CD platform that runs workflows in response to repository events.

Runner Group

A Runner Group is a collection of self-hosted or GitHub-hosted runners with shared access policies, used to control which repositories can run jobs on them.

Encrypted Secrets

Encrypted Secrets are protected values, such as tokens and credentials, that GitHub Actions workflows can use without exposing them in code.

GitHub Advanced Security

GitHub Advanced Security (GHAS) is the suite of features — code scanning, secret scanning, and dependency review — that helps secure code in GitHub.

CodeQL

CodeQL is GitHub's static-analysis engine that powers code scanning by querying code as data to find vulnerabilities.

Dependabot

Dependabot is GitHub's feature that detects vulnerable dependencies and opens pull requests to update them.

Audit Log

The Audit Log is the record of administrative and security-relevant events across an organization or enterprise.