diff --git a/.github/repository-settings.md b/.github/repository-settings.md
index ee36cad9b9c1..6c5b4ffe9070 100644
--- a/.github/repository-settings.md
+++ b/.github/repository-settings.md
@@ -30,8 +30,6 @@ settings](https://github.com/open-telemetry/community/blob/main/docs/how-to-conf
 - Targeted branches:
   - `main`
   - `release/*`
-  - `v0.*`
-  - `v1.*`
 - Branch rules
   - Restrict deletions: CHECKED
   - Require linear history: CHECKED
@@ -44,6 +42,10 @@ settings](https://github.com/open-telemetry/community/blob/main/docs/how-to-conf
     - `required-status-check`
     - `gradle-wrapper-validation`
   - Block force pushes: CHECKED
+  - Require code scanning results: CHECKED
+    - CodeQL
+      - Security alerts: High or higher
+      - Alerts: Errors
 
 ### `cloudfoundry` branch
 
@@ -69,13 +71,24 @@ settings](https://github.com/open-telemetry/community/blob/main/docs/how-to-conf
   - Require linear history: CHECKED
   - Block force pushes: CHECKED
 
+### Old-style release branches
+
+- Targeted branches:
+  - `v0.*`
+  - `v1.*`
+- Branch rules
+  - Restrict creations: CHECKED
+  - Restrict updates: CHECKED
+  - Restrict deletions: CHECKED
+
 ### Restrict branch creation
 
 - Targeted branches
   - Exclude:
     - `release/*`
-    - `renovate/**/**`
-    - `opentelemetrybot/**/**`
+    - `renovate/**/*`
+    - `opentelemetrybot/**/*`
+    - `revert-*/**/*` (these are created when using the GitHub UI to revert a PR)
 - Restrict creations: CHECKED
 
 ### Restrict updating tags
@@ -87,10 +100,9 @@ settings](https://github.com/open-telemetry/community/blob/main/docs/how-to-conf
 
 ## Branch protections
 
-### `main`, `release/*`, `v0.*`, `v1.*`, `cloudfoundry`
+### `main`, `release/*`, `cloudfoundry`
 
 - Restrict who can push to matching branches: CHECKED
-  - Restrict pushes that create matching branches: CHECKED
 
 ## Code security and analysis