1. Visit your GitHub Enterprise URL.

2. Select your Organization > Settings.

3. From the left-hand menu, pick Developer settings.

4. In that section, please choose the "New GitHub App" option.

5. Create your application by giving it a name and Homepage URL.

6. (Optional) Disable the "Activate" Webhook button.

7. From the "Repository permissions," you should pick the following ones:

   1. Contents: Read and write,
   2. Issues: Read and write,
   3. Metadata: Read-only,
   4. Pull requests: Read and write.
   5. Dependabot alerts (Optional): Read
   6. Dependabot secrets (Optional): Read
   7. Code scanning alert (Optional): Read and write

📘

Dependabot alerts and Dependabot secrets permissions must be enabled for Dependabot integration.

📘

To utilize the Github Enterprise ALM integration for hosting a Semgrep CE rules repository, ensure that the rules repository belongs to the organization, and--if using limited repository scope--is added to the "Only select repositories" scope in the app configuration.

8. Save the GitHub App.
9. After saving the App, navigate to the "Install App" section.

10. Install the GitHub App.

11. After the creation, please navigate back to Developer Settings and Edit your App.

12. Save your App ID to use it later.

13. At the bottom section, create a new private key by clicking "Generate a private key."

14. Once your private key is created, it'll be automatically downloaded.

15. Navigate to your Kondukto instance.
16. Pick Settings from the left-hand menu.
17. Select the "Application Lifecycle Management" section.
18. Click the Active button on GitHub Enterprise.
19. Enter the App ID and PEM Key accordingly. (If you are using GE Onprem, please click on "Integrate with On-premises version" checkbox)

20. Click to Test Connection.
21. If the Test Connection is passed, you'll be able to click the Save button.