Read-only access to github and alternative sites

We are exploring how we might permit read-only access to github.com and github.io for our end users. The application control currently only has options to block or allow, so that doesn’t help (although we have asked our TAM to open an enhancement request for that control to include a read-only option in future). We are decrypting the traffic to these sites, so we are testing now to try and identify keywords/strings in the URLs to effectively block certain functions on the site like upload or post (to prevent data leakage). We have had success doing this with youtube and some other streaming sites. Has anyone else already explored this with github and do you have any keywords/strings that you could share for blocking functionality on the site? Also, what alternatives to github should we also consider making read-only to prevent data leakage? Thank you!

1 Like

Welcome to Community Tristan (@mahantr)!

This sounds like a use case for our browser-isolation technology that will come into the platform in the future. While there is no official release date yet and safe harbour terms apply, our engineers are working with the technology via Zscaler’s acquisition of Appsulate to enable browser-isolation within Zscaler.

Additional information can be found here: https://www.zscaler.com/products/browser-isolation

Did you explore the DLP feature? We have Dictionnaries to detect source code so you can prevent people from uploading sourcecode to GitHub or any other Websites.

I am trying to get more information about what the source code dictionary is actually detecting to understand if it would be useful for us. Can you provide insight?

This is a machine learning based dictionary. The algorithm is trained to identify programming languages based on the features extracted from source code samples in our training set. It is actively tested against programming language samples like c, c++, java, csharp, perl, python, ruby, php, shell etc.

Good information - thank you