← Back
GitHub
GitHub Enterprise AI Controls now generally available with expanded agent governance and audit capabilities
GitHub CopilotGitHub Dependabot · releasefeatureapiplatform · github.blog ↗

General Availability Release

GitHub has announced general availability of Enterprise AI Controls and the agent control plane, a comprehensive suite of governance features designed to give GitHub Enterprise administrators control and visibility over AI capabilities and agents across their organizations. The platform consolidates administrative tasks for AI systems into a single interface, enabling enterprises to balance enabling AI capabilities while maintaining security and compliance standards.

Key Enterprise Features

Administrative Roles and Workspace

  • New AI Controls workspace provides a consolidated view for AI-related administrative tasks
  • Enterprise custom roles with fine-grained permissions allow distributed administration responsibility
  • Administrators can view audit logs, manage agent session activity, and configure AI policies

Agent Activity Visibility

  • Comprehensive audit logs now include actor_is_agent identifiers to distinguish agent actions from user actions
  • New agent_session.task events track session lifecycle (start, completion, failure)
  • Cloud agent session activity view now extends beyond the initial 1,000 record limit, showing all sessions from the last 24 hours
  • Agents page audit logs automatically pre-filter results from Copilot and third-party agents

Custom Agent Standards

  • Enterprise administrators can set standards for custom agents and version control agent definitions
  • One-click push rule protects custom agent file paths (.github/agents/*.md) across the enterprise
  • Capability to centrally manage Model Context Protocol (MCP) allowlists through a registry URL

New in General Availability

Enhanced Agent Management

  • Search and filter agentic session activity by specific agents, including third-party agents
  • Track usage by organization within the enterprise
  • Drill down to detailed session information for individual agents

Programmatic Policy Configuration

  • REST API support is now available for applying enterprise-wide custom agent definitions
  • Administrators can programmatically set source organizations and list custom agents from the canonical .github-private/agents/*.md repository path
  • The AI Controls tab in enterprise settings consolidates all AI-related policies (Copilot policies page redirect removed)

Preview Features

  • MCP enterprise allow lists remain in public preview while the team designs scalable solutions across organizations

Next Steps

GitHub is planning additional capabilities including broader session activity coverage for VS Code and Copilot CLI clients, programmatic access to agent activity, expanded API coverage for policies, and enhanced MCP governance options.

For more information, see the AI Controls and Agent Control Plane documentation.