GitHub Community
community community Code-security Discussions
Pinned Discussions
-
GitHub Copilot Hackathon Playbook for Enterprise Admins
Discover: GitHub Best Practices GitHub Community Admin -
-
-
Code Security Discussions
Conversations related to Code Security. Build security into your GitHub workflow with features to keep secrets and vulnerabilities out of your codebase, and to maintain your software supply chain.
Pinned to Code Security
-
You must be logged in to vote [GHAS 101] Stop Secrets From Reaching Your Codebase: Secret Scanning & Push Protection
Secret ScanningDetect and prevent the exposure of sensitive information in your code Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure GHASDiscussions related to GitHub Advanced Security Best PracticesBest practices, tips & tricks, and articles from GitHub and its users Show & TellDiscussions where community members share their projects, experiments, or accomplishments Secret ManagementSecret mgmt: store/use/rotate secrets safely (scope, OIDC, vaults).
Discussions
-
You must be logged in to vote How much does Dependabot cost?
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage -
You must be logged in to vote Fake sender name in github notification emails
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage -
You must be logged in to vote Github login password changes every 24h automatically
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage -
You must be logged in to vote Can GitHub Copilot See SQL Query Results in VSCode? Is there a source that I can cite that explicitly shows that this is or isn't the case?
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage -
You must be logged in to vote Forced commits to repositories
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage Welcome 🎉Used to greet and highlight first-time discussion participants. Welcome to the community! -
You must be logged in to vote How to actually revoke a GitHub GPG key?
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage -
You must be logged in to vote Code Security Best Practices
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage -
You must be logged in to vote GitHub Coding Agent : Data retention for prompts and outputs in GitHub Coding Agent
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote Email verification
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage Welcome 🎉Used to greet and highlight first-time discussion participants. Welcome to the community! -
You must be logged in to vote Push protection ruleset bypass not prompting as described
BugGitHub or a GitHub feature is not working as intended Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure -
You must be logged in to vote Possible to ve
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage -
You must be logged in to vote Clicking Dependency Review Rendered Preview multiple times causes duplicate Previews
BugGitHub or a GitHub feature is not working as intended Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure -
You must be logged in to vote Fine-grained PAT: Editing a token silently reverts "Only select repositories" to "All repositories"
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Product FeedbackShare your thoughts and suggestions on GitHub features and improvements Welcome 🎉Used to greet and highlight first-time discussion participants. Welcome to the community! -
You must be logged in to vote What are recommended secure coding practices for handling user input in a Node.js API to prevent injection attacks?
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote Being charged for GHAS Secret Protection and Code Security licenses even though I removed every committer and repository
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage -
You must be logged in to vote (Serious Issue Of Github) Commit Timestamp Manipulation via Local System Clock Allows Fabricated Historical Commit Records
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage -
You must be logged in to vote "sing in with your identity provider" lock out
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage -
You must be logged in to vote blockchaine scurity
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage -
You must be logged in to vote -
You must be logged in to vote ⚠️ Security Alert: Coordinated Unauthorized GitHub Repo Access & Hidden Code Injection
BugGitHub or a GitHub feature is not working as intended Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure -
You must be logged in to vote Plans to add Google Cloud Artifact Registry support for the recently announced Dependabot OIDC authentication?
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage Welcome 🎉Used to greet and highlight first-time discussion participants. Welcome to the community! -
You must be logged in to vote 2FA Thbbbbt!
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Product FeedbackShare your thoughts and suggestions on GitHub features and improvements Welcome 🎉Used to greet and highlight first-time discussion participants. Welcome to the community! -
You must be logged in to vote CodeQL now supports Rust
🚀 ShippedA feature has been released 📣 ANNOUNCEMENTAnnouncements from the GitHub Community team Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure otherGeneral topics and discussions that don't fit into other categories, but are related to GitHub ChangelogA discussion post associated with a Changelog post -
You must be logged in to vote How can I fix this security vulnerability flagged by a dependency scanner in my project?
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale.
