DevOps & Development

GitHub Enterprise Cloud for Government

Name: GitHub Enterprise Cloud for Government
Brand: Microsoft (GitHub)

by Microsoft (GitHub)

Moderate ImpactAuthorized

Impact Level

Moderate

Status

Authorized

Pricing

enterprise

Authorization Date: January 18, 2023 | Sponsoring Agency: GSA

Overview

GitHub Enterprise Cloud for Government provides FedRAMP Moderate authorized source code management and DevSecOps capabilities for government organizations. It offers code repositories, GitHub Actions CI/CD, security scanning, and Copilot AI assistance within a compliant boundary. The platform is hosted on Azure Government infrastructure.

Key Features

✓FedRAMP Moderate baseline controls

✓Azure Government hosted

✓GitHub Advanced Security

✓Code scanning and secret detection

✓GitHub Actions CI/CD

✓Dependency review and Dependabot

Defense Contractor Use Case

Defense contractors use GitHub Enterprise Government for source code management, CI/CD automation, and security scanning across development teams building government applications.

Related Products

ModerateAuthorized

GitLab Government

GitLab

ModerateAuthorized

Atlassian Cloud for Government

Atlassian

More DevOps & Development Products

Moderate

GitLab Government

GitLab

Moderate

JFrog Government Cloud

JFrog

Moderate

CloudBees CI for Government

CloudBees

Moderate

SonarQube Cloud for Government

SonarSource

Frequently Asked Questions

What is the FedRAMP authorization level for GitHub Enterprise Cloud for Government?

GitHub Enterprise Cloud for Government is authorized at the FedRAMP Moderate impact level, with authorization granted on 2023-01-18 sponsored by GSA. The FedRAMP Moderate baseline includes approximately 325 security controls covering confidentiality, integrity, and availability.

Can defense contractors use GitHub Enterprise Cloud for Government for CUI?

GitHub Enterprise Cloud for Government is authorized at the FedRAMP Moderate baseline. While FedRAMP Moderate covers a broad range of government data, defense contractors handling CUI should carefully evaluate whether Moderate controls meet their specific DFARS 252.204-7012 and NIST 800-171 requirements. Some CUI categories may require FedRAMP High authorization depending on the sensitivity of the data and contract requirements.

How does GitHub Enterprise Cloud for Government pricing compare to commercial?

GitHub Enterprise Cloud for Government government pricing is typically negotiated on an enterprise basis and may differ from commercial list prices. Government and defense contractor pricing often includes compliance overhead that can make it 15-30% higher than commercial equivalents. However, volume discounts, GSA Schedule pricing, and multi-year commitments can help offset these costs. Contact Microsoft (GitHub) directly or check GSA Advantage for current government pricing.

Browse All FedRAMP Authorized Tools

Search and filter 80+ FedRAMP authorized products for your defense contracting needs.

Open FedRAMP Finder

← FedRAMP Authorized Products

Overview

Frequently Asked Questions