diff --git a/_images/administration-and-security-controls.png b/_images/administration-and-security-controls.png new file mode 100644 index 0000000..ae7e32a Binary files /dev/null and b/_images/administration-and-security-controls.png differ diff --git a/_images/administration-and-security-controls@2x.png b/_images/administration-and-security-controls@2x.png new file mode 100644 index 0000000..cccb072 Binary files /dev/null and b/_images/administration-and-security-controls@2x.png differ diff --git a/_images/enforce-ai-providers.png b/_images/enforce-ai-providers.png new file mode 100644 index 0000000..8252fad Binary files /dev/null and b/_images/enforce-ai-providers.png differ diff --git a/_images/enforce-ai-providers@2x.png b/_images/enforce-ai-providers@2x.png new file mode 100644 index 0000000..f66f42e Binary files /dev/null and b/_images/enforce-ai-providers@2x.png differ diff --git a/gk-dev/gk-dev-security-controls.md b/gk-dev/gk-dev-security-controls.md index f716b6c..4ecc198 100644 --- a/gk-dev/gk-dev-security-controls.md +++ b/gk-dev/gk-dev-security-controls.md @@ -13,13 +13,67 @@ GitKraken provides centralized security settings to help your organization contr ## GitKraken AI Features -GitKraken AI features can suggest code or perform smart actions to improve your workflow. These features may require sending code snippets to GitKraken AI hosted in the cloud. +GitKraken AI features can suggest code or perform smart actions to improve your workflow. These features may require sending code snippets to GitKraken AI or third-party providers. -If these features don’t align with your organization's security policies, you can disable them for all members in your organization. +If these features don’t align with your organization's security policies, you can control access across your organization. -- Go to Settings > Security Controls > AI Features - - Requires [owner, admin, or billing contact](/gk-dev/gk-dev-organization/#roles) - - Available on [Teams or Enterprise plans](https://www.gitkraken.com/pricing) +### Manage AI Feature Access + +To enable or disable GitKraken AI features for all organization members: + +- Go to **Settings > Security Controls > AI Features** + - Requires [owner, admin, or billing contact](/gk-dev/gk-dev-organization/#roles) + - Available on [Advanced+ plans](https://www.gitkraken.com/pricing) + +
+ GitKraken AI feature toggle in Security Controls +
Organization-level toggle for GitKraken AI features
+
+ +### Enforce AI Providers + +Organizations on the Business+ plans can enforce restrictions on which AI providers are allowed across GitKraken products. This ensures compliance with your data policies. + +To configure provider-level controls: + +1. Go to **Settings > Security Controls > Enforce AI providers**. +2. Enable the toggle to display supported providers. +3. For each provider, you can: + - Enable: Allow team members to use the provider’s models. + - Disable: Block the provider completely. + +For the following marked* providers, you can also: + - Set an API Key: Enforce the use of your key. + - Add a Custom URL (requires a key): Restrict access to a specific endpoint. + +Supported providers include: +- Anthropic* +- Azure* +- DeepSeek +- GitHub Copilot +- GitKraken AI +- Google* +- Hugging Face* +- Mistral* +- Ollama* +- OpenAI* +- OpenAI compatible* +- OpenRouter +- xAI + +
+ AI provider settings showing API key and URL fields +
Example of AI provider configuration fields
+
+ +
+

+ Providers marked with an asterisk (*) support setting a custom API key and URL. +

+

+ These settings apply across all GitKraken products used by your organization. +

+
***