GitHub Community
community community Code-security Discussions
Pinned Discussions
Code Security Discussions
Conversations related to Code Security. Build security into your GitHub workflow with features to keep secrets and vulnerabilities out of your codebase, and to maintain your software supply chain.
Pinned to Code Security
-
You must be logged in to vote CodeQL now supports Rust
🚀 ShippedA feature has been released 📣 ANNOUNCEMENTAnnouncements from the GitHub Community team Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure GeneralGeneral topics and discussions that don't fit into other categories, but are related to GitHub ChangelogA discussion post associated with a Changelog post -
You must be logged in to vote Assignable alerts for code scanning and secret scanning are now in public preview
🚀 ShippedA feature has been released 📣 ANNOUNCEMENTAnnouncements from the GitHub Community team Code ScanningCode scanning: our code analysis features, powered by the CodeQL engine Secret ScanningDetect and prevent the exposure of sensitive information in your code Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure ChangelogA discussion post associated with a Changelog post
Discussions
-
You must be logged in to vote Introducing extended metadata checks for secret scanning
🚀 ShippedA feature has been released 📣 ANNOUNCEMENTAnnouncements from the GitHub Community team Secret ScanningDetect and prevent the exposure of sensitive information in your code Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure ChangelogA discussion post associated with a Changelog post Universe 2025githubuniverse.com Oct. 28-29 -
You must be logged in to vote Security campaigns for secret scanning alerts are now in public preview
🚀 ShippedA feature has been released 📣 ANNOUNCEMENTAnnouncements from the GitHub Community team Secret ScanningDetect and prevent the exposure of sensitive information in your code Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure ChangelogA discussion post associated with a Changelog post -
You must be logged in to vote 📌 Security Releases Bulletin – June 2025 Edition
🚀 ShippedA feature has been released Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Show & TellDiscussions where community members share their projects, experiments, or accomplishments Community Check-InUpdates & News from GitHub Community Managers -
You must be logged in to vote Dependabot Support for Gradle Lockfiles is Now Generally Available
🚀 ShippedA feature has been released 📣 ANNOUNCEMENTAnnouncements from the GitHub Community team DependabotAutomatically update dependencies to keep your project secure and up to date Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure ChangelogA discussion post associated with a Changelog post -
You must be logged in to vote Security campaigns are now generally available to help address security debt at scale
🚀 ShippedA feature has been released 📣 ANNOUNCEMENTAnnouncements from the GitHub Community team Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure GeneralGeneral topics and discussions that don't fit into other categories, but are related to GitHub ChangelogA discussion post associated with a Changelog post -
You must be logged in to vote Delegated Alert Dismissal for Code Scanning is Now Generally Available ♻️
🚀 ShippedA feature has been released Code ScanningCode scanning: our code analysis features, powered by the CodeQL engine Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Show & TellDiscussions where community members share their projects, experiments, or accomplishments ChangelogA discussion post associated with a Changelog post -
You must be logged in to vote ⚙�� Configure Which Secret Scanning Patterns Are Included in Push Protection (Public Preview)
🚀 ShippedA feature has been released 📣 ANNOUNCEMENTAnnouncements from the GitHub Community team Secret ScanningDetect and prevent the exposure of sensitive information in your code Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure ChangelogA discussion post associated with a Changelog post -
You must be logged in to vote Dependabot Metrics Page (Private Preview): Helping GHAS Code Security Users Prioritize Vulnerabilities
🚀 ShippedA feature has been released 📣 ANNOUNCEMENTAnnouncements from the GitHub Community team DependabotAutomatically update dependencies to keep your project secure and up to date Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure ChangelogA discussion post associated with a Changelog post -
You must be logged in to vote ✅ Enforce Admission Policies with Artifact Attestations in Kubernetes using OPA Gatekeeper (Public Preview)
🚀 ShippedA feature has been released 📣 ANNOUNCEMENTAnnouncements from the GitHub Community team API and WebhooksDiscussions related to GitHub's APIs or Webhooks Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure EnterpriseDiscussions related to GitHub Enterprise Cloud, Enterprise Server and Organizations Show & TellDiscussions where community members share their projects, experiments, or accomplishments ChangelogA discussion post associated with a Changelog post -
You must be logged in to vote 🔍 Secret Scanning REST API: New Response Fields Now Generally Available
🚀 ShippedA feature has been released 📣 ANNOUNCEMENTAnnouncements from the GitHub Community team API and WebhooksDiscussions related to GitHub's APIs or Webhooks Secret ScanningDetect and prevent the exposure of sensitive information in your code Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Show & TellDiscussions where community members share their projects, experiments, or accomplishments ChangelogA discussion post associated with a Changelog post -
You must be logged in to vote CodeQL 2.20.6 Release: Enhanced Support and Improved Accuracy 🎯
🚀 ShippedA feature has been released 📣 ANNOUNCEMENTAnnouncements from the GitHub Community team Code ScanningCode scanning: our code analysis features, powered by the CodeQL engine Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure ChangelogA discussion post associated with a Changelog post -
You must be logged in to vote 📣 Updates to Secret Scanning Alerts: Generic Category for Non-Provider Patterns and Copilot-Detected Passwords
🚀 ShippedA feature has been released Secret ScanningDetect and prevent the exposure of sensitive information in your code Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure CopilotCode accurately and faster with your AI powered pair-programmer. ChangelogA discussion post associated with a Changelog post -
You must be logged in to vote Code scanning caches dependencies for Java, Go & C#
🚀 ShippedA feature has been released Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Show & TellDiscussions where community members share their projects, experiments, or accomplishments ChangelogA discussion post associated with a Changelog post -
You must be logged in to vote [Code Security] August Release Roundup 🚀
🚀 ShippedA feature has been released ReleasesDiscussions about published versions of a repository, including release notes and download link(s) Code ScanningCode scanning: our code analysis features, powered by the CodeQL engine Secret ScanningDetect and prevent the exposure of sensitive information in your code Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure ChangelogA discussion post associated with a Changelog post
