Add code repositories using GitHub

Sophos provides a GitHub app which you can install to give Sophos Cloud Optix access to your repositories.

You can install the app in your GitHub account or your organization’s account.

Once you have installed the app, it allows Sophos to scan the repository for configurations related to Terraform, AWS CloudFormation and so on, and identify potential vulnerabilities each time a push is made to the repository.

To install the app, do as follows.
Note Before you start, ensure you've signed in to GitHub.
  1. Click Settings (in the left-hand menu) and select Environments.
  2. Click Add New Environment.
  3. On the Add your Cloud Provider environment page, select the IaC Environment tab.
  4. Click the link under Integrate using GitHub App.
    You see this screen:

  5. Click Configure.
    This prompts you to install the app on your repositories (it may also show the option to install on your organization).
  6. You now see a Sophos Cloud Optix welcome screen. If you are not redirected automatically enter your Customer ID and click Configure.

    The Customer ID is provided on the IaC Environments tab in Sophos Cloud Optix.

You are redirected to the Environments page in Sophos Cloud Optix.

Note The repositories you have given Sophos Cloud Optix access to are shown on the IaC Environments tab. Repositories are shown as Pending until a new change occurs in the repository. Sophos Cloud Optix will scan IaC templates in a repository when a change is first seen. The repository is then shown as Active.