Add source code integration instructions to security docs (#23985)

* Add source code integration instructions

* Clean up instructions

* Update content/en/security/cloud_security_management/setup/source_code_integrations.md

Co-authored-by: Esther Kim <[email protected]>

* Update content/en/security/cloud_security_management/setup/source_code_integrations.md

Co-authored-by: Esther Kim <[email protected]>

* Small wording change

---------

Co-authored-by: Esther Kim <[email protected]>

Author: drichards-87

config/_default/menus/main.en.yaml

@@ -4789,6 +4789,11 @@ menu:
       parent: csm_setup
       identifier: csm_setup_cloudtrail_logs
       weight: 106
+    - name: Source Code Integrations
+      url: security/cloud_security_management/setup/source_code_integrations
+      parent: csm_setup
+      identifier: csm_setup_source_code_integrations
+      weight: 106
     - name: Threats
       url: security/threats/
       parent: csm

content/en/security/cloud_security_management/setup/_index.md

@@ -52,6 +52,7 @@ The following table shows which sections appear on the Setup page for each featu
           <li><a href="/security/cloud_security_management/setup/cloud_accounts">Cloud accounts</a></li>
           <li><a href="/security/cloud_security_management/setup/agent">Hosts and containers</a></li>
           <li><a href="/security/cloud_security_management/setup/cloud_accounts/?tab=aws#set-up-cloudtrail-logs-forwarding">CloudTrail logs</a></li>
+          <li><a href="/security/cloud_security_management/setup/source_code_integrations">Source code integrations</a></li>
         </ul>
       </td>
     </tr>

content/en/security/cloud_security_management/setup/source_code_integrations.md

@@ -0,0 +1,27 @@
+---
+title: Setting up Source Code Integrations for Cloud Security Management
+---
+
+Use the following instructions to enable Infrastructure as Code (IaC) remediation for Cloud Security Management (CSM). IaC remediation is available for [CSM Misconfigurations][1] and [CSM Identity Risks][2].
+
+## Set up the GitHub integration
+
+Follow [the instructions][3] for creating a GitHub app for your organization.
+
+<div class="alert alert-info">To use IaC remediation, you must give the Github App <code>Read & Write</code> permissions for <code>Contents</code> and <code>Pull Requests</code>. These permissions can be applied to all or select repositories.
+</div>
+
+## Enable IaC remediation for your repositories
+
+After you set up the GitHub integration, enable IaC remediation for the repositories in your GitHub account.
+
+1. On the [CSM Setup page][4], expand the **Source Code Integrations** section.
+2. Click **Configure** for the GitHub account you want to configure.
+3. To enable IaC:
+    - For all repositories, switch on the IAC toggle under Enable Infrastructure as Code (IaC).
+    - For a single repository, switch on the IAC toggle for that repository.
+
+[1]: /security/cloud_security_management/misconfigurations
+[2]: /security/cloud_security_management/identity_risks
+[3]: /integrations/github/#link-a-repository-in-your-organization-or-personal-account
+[4]: https://app.datadoghq.com/security/configuration/csm/setup