Ensure GitHub branch protection restricts who can dismiss PR reviews
Error: GitHub branch protection does not restrict who can dismiss a PR
Bridgecrew Policy ID: BC_REPO_GITHUB_8
Checkov Check ID: CKV_GITHUB_12
Severity: LOW
GitHub branch protection does not restrict who can dismiss a PR
Description
Dismissing a pull request review allows you to dismiss irrelevant or outdated reviews. However, this also allows blocking reviews to be dismissed. Branch protection rules allow you to restrict who can dismiss reviews to a limited subset of users or teams.
Updated 6 months ago