Never leak secrets to your GitHub repositories again

2023-05-10 11:02

GitHub is making push protection - a security feature designed to automatically prevent the leaking of secrets to repositories - free for owners of all public repositories.

Prevent leaking secrets with GitHub push protection.

Push protection stops the leaking of secrets by scanning a code commit before it gets pushed.

"Push protection only blocks secrets with low false positive rates, so when a commit is blocked, you know it's worth investigating."

Admins can enable the push protection feature in the GitHub code security and analysis settings.

"Secret scanning as a push protection currently scans repositories for secrets issued by some service providers," GitHub explains, noting that secret scanning can be made to also check pushes for custom patterns.

News URL

https://www.helpnetsecurity.com/2023/05/10/github-prevent-leaking-secrets/

#github #leak

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Github		10	2	30	29	14	75