-
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
-
YzNyc3BkNzZmZGNtczNiMjhtdGc6UjctX1ZOVEZQaU92WWxCbHFBVjdpUXhFLXVTQzBfWjFqWE1fZS0tOEZZZw==
-
### Summary
In-product metrics that will live in an organization's security overview pages on how a push protection is performing, e.g. number of blocked and bypassed secrets.
### Intended Outcome
…
-
### Summary
Secret scanning currently scans commit content for all supported patterns. We're extending the breadth of our scans for Advanced Security customers to cover pull requests and discussions,…
-
### Summary
Security teams need more configurability over who can bypass push protection to balance security and developer productivity effectively. By integrating secret scanning's push protection…
-
The issue is in response to [BEST WG issue](https://github.com/ossf/wg-best-practices-os-developers/issues/488) "Add secret scanning and push protection to SCM-BestPractices recommendations"
Secret…
-
It's sadly easy to accidentally insert secrets into a repository ([here's an example](https://docs.google.com/document/d/1MWBTqpO8XofvN9ElTX5tPB8a7N1N0Wp9JgEQ9ff4Qvo/edit)).
We should modify the [S…
-
The official Github secret scanning documentation mentions defining custom patterns for secret scanning :
https://docs.github.com/en/enterprise-cloud@latest/code-security/secret-scanning/defining-c…
-
-
Option to run the secret scanning on a branch. Is it possible to run this action against a branch instead of PR ?