content/code-security/code-scanning/managing-your-code-scanning-configuration/enabling-delegated-alert-dismissal-for-code-scanning.md

metadata

title: Enabling delegated alert dismissal for code scanning
intro: >-
  You can use delegated alert dismissal to control who can dismiss an alert
  found by {% data variables.product.prodname_code_scanning %}.
permissions: '{% data reusables.permissions.delegated-alert-dismissal %}'
versions:
  feature: security-delegated-alert-dismissal
type: how_to
topics:
  - Code scanning
  - Advanced Security
  - Alerts
  - Repositories
shortTitle: Enable delegated alert dismissal

About enabling delegated alert dismissal

{% data reusables.security.delegated-alert-dismissal-intro %}

Configuring delegated dismissal for a repository

If an organization owner configures delegated alert dismissal via an enforced security configuration, the settings can't be changed at the repository level.

{% data reusables.repositories.navigate-to-repo %} {% data reusables.repositories.sidebar-settings %} {% data reusables.repositories.navigate-to-code-security-and-analysis %}{% ifversion ghas-products %}{% else %} {% data reusables.repositories.navigate-to-ghas-settings %}{% endif %}

1. Under "{% data variables.product.UI_code_security_scanning %}", click Enable for "Prevent direct alert dismissals".

Configuring delegated dismissal for an organization

You must configure delegated dismissal for your organization using a custom security configuration. You can then apply the security configuration to all (or selected) repositories in your organization.

1. Create a new custom security configuration, or edit an existing one. See AUTOTITLE.
2. When creating the custom security configuration, under "{% data variables.product.prodname_code_scanning_caps %}", set "Prevent direct alert dismissals" to Enabled.
3. Click Save configuration.
4. Apply the security configuration to all (or selected) repositories in your organization. See AUTOTITLE.

Configuring delegated dismissal for an enterprise

You must configure delegated dismissal for your enterprise using a custom security configuration. You can then apply the security configuration to all (or selected) repositories in your enterprise.

1. Create a new custom security configuration, or edit an existing one. See AUTOTITLE.
2. When creating the custom security configuration, under "{% data variables.product.prodname_code_scanning %}", ensure that the dropdown menu for "Prevent direct alert dismissals" is set to Enabled.
3. Click Save configuration.
4. Apply the security configuration to all (or selected) repositories in your enterprise. See AUTOTITLE.

To learn more about security configurations, see AUTOTITLE.