Try GitHub Copilot CLIAttend GitHub Universe
Back to changelog
Improvement

May 19, 20261 Minute Read

Expanded OIDC support for Dependabot and code scanning

Dependabot and code scanning now support OpenID Connect (OIDC) authentication for private registries configured at the organization level for two additional registries: Cloudsmith and Google Artifact Registry.

What’s new

Organization administrators can configure OIDC-based credentials for private registries across their organization. With OIDC-based authentication, you can dynamically obtain short-lived credentials from your cloud identity provider, just like GitHub Actions workflows using OIDC federation. This builds on earlier support for OIDC authentication at the org level and extends it to support two new registries.

Supported registries

  • AWS CodeArtifact
  • Azure DevOps Artifacts
  • JFrog Artifactory
  • Cloudsmith
  • Google Artifact Registry

This feature is now generally available on github.com and will ship in GitHub Enterprise Server 3.22.

Learn more about configuring OIDC for Dependabot and code scanning at the organization level. You can also join the community discussion.

Related Posts

Subscribe to our developer newsletter

Discover tips, technical guides, and best practices in our biweekly newsletter just for devs.

By submitting, I agree to let GitHub and its affiliates use my information for personalized communications, targeted advertising, and campaign effectiveness. See the GitHub Privacy Statement for more details.

Expanded OIDC support for Dependabot and code scanning - GitHub Changelog