Secret scanning validity checks are generally available on GHEC.
Validity checks help you triage alerts by indicating if the secret is active or inactive. Remember, active secrets are still potentially exploitable and should be addressed immediately. This release adds several improvements, including ability to audit with timeline and audit logging support, and improved support for closed alerts. You must opt in to validity checks.
Summary
Secret scanning validity checks are generally available on GHEC.
Validity checks help you triage alerts by indicating if the secret is
active
orinactive
. Remember, active secrets are still potentially exploitable and should be addressed immediately. This release adds several improvements, including ability to audit with timeline and audit logging support, and improved support for closed alerts. You must opt in to validity checks.Learn more about validity checks.