Scanning private GitHub repositories
While AppScan on Cloud allows you to perform comprehensive security scans on your public GitHub repositories using our advanced cloud service without additional setup, scanning private repositories requires the installation of the HCL AppScan on Cloud GitHub application.
- Connect to the appropriate GitHub app location:
- North American ASoC accounts: https://github.com/apps/hcl-appscan-on-cloud
- Western European ASoC accounts: https://github.com/apps/hcl-appscan-on-cloud-eu
- Log in to GitHub to install the application on your personal account or in
organizations that you own.Note: If you have a private repository under an organization for which you are not the owner or application manager, ask the owner to install the application in the organization.
You do not need to install the HCL AppScan on Cloud GitHub application for scanning public repositories. To scan public repositories directly, use the Create Scan wizard.
The HCL AppScan on Cloud GitHub application requires read access to your repositories to perform security scans.
You can disable or uninstall the HCL AppScan on Cloud GitHub application at any time. However, you will need to enable or reinstall it to scan your private repositories again in the future. To uninstall the HCL AppScan on Cloud GitHub application, from GitHub settings, select .