Aqua CSPM

Org Default Permission

Quick Info

Plugin TitleOrg Default Permission
CloudGITHUB
CategoryOrgs
DescriptionChecks the default permission given to new users added to an organization.
More InfoThe default permission given to new organization users should be set to none. Read permissions risk exposing private repositories, while write or admin permissions risk sensitive access to repositories for new users.
GITHUB Linkhttps://help.github.com/en/articles/repository-permission-levels-for-an-organization
Recommended ActionSet the default permission to none or read-only and assign permissions on a more granular repository level.

Detailed Remediation Steps