Skip to content

Commit f89b8fd

Browse files
benwebb-auam-stead
andauthored
Document Dependabot and IP Allow Lists (#56540)
Co-authored-by: Anne-Marie <102995847+am-stead@users.noreply.github.com>
1 parent 7eb8ba2 commit f89b8fd

File tree

2 files changed

+11
-0
lines changed

2 files changed

+11
-0
lines changed

content/admin/configuring-settings/hardening-security-for-your-enterprise/restricting-network-traffic-to-your-enterprise-with-an-ip-allow-list.md

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -130,3 +130,7 @@ To ensure seamless use of the OIDC CAP while still applying the policy to OAuth
130130
## Using {% data variables.product.prodname_pages %} with an IP allow list
131131

132132
{% data reusables.pages.ip-allow-list-pages %}
133+
134+
## Using {% data variables.product.prodname_dependabot %} with an IP allow list
135+
136+
{% data reusables.dependabot.ip-allow-list-dependabot %}
Lines changed: 7 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,7 @@
1+
By default, dynamically provisioned {% data variables.product.github %}-hosted runners do not guarantee static IP addresses. This includes the runners that are used by default with {% data variables.product.prodname_dependabot %}.
2+
3+
If you use an IP allow list and {% data variables.product.prodname_dependabot %}, you must set up a self-hosted runner or enable {% data variables.product.prodname_dependabot %} for use with {% data variables.actions.hosted_runners %}. See [AUTOTITLE](/actions/concepts/runners/about-self-hosted-runners) and [AUTOTITLE](/code-security/dependabot/working-with-dependabot/about-dependabot-on-github-actions-runners#enabling-or-disabling-dependabot-on-larger-runners).
4+
5+
Additionally, to learn more about setting up a {% data variables.actions.hosted_runners %} with a static IP address configured, see [AUTOTITLE](/actions/concepts/runners/about-larger-runners).
6+
7+
To allow your self-hosted runners or {% data variables.actions.hosted_runners %} to communicate with {% data variables.product.github %}, add the IP address or IP address range of your runners to the IP allow list that you have configured for your enterprise.

0 commit comments

Comments
 (0)