community community Code-security Discussions
Pinned Discussions
-
All GitHub Copilot plans are now on usage-based billing [FAQ]
💭 Copilot Conversations · GitHub Community Admin -
-
-
Sort by:
Latest activity
Categories
🤖 Code Security Discussions
Conversations related to Code Security. Build security into your GitHub workflow with features to keep secrets and vulnerabilities out of your codebase, and to maintain your software supply chain.
Pinned to Code Security
-
You must be logged in to vote 🤖 ❗[START HERE] Welcome to the Code Security Community! 🔐
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Show & TellDiscussions where community members share their projects, experiments, or accomplishments Community Check-InUpdates & News from GitHub Community Managers -
🤖 [GHAS 101] Stop Secrets From Reaching Your Codebase: Secret Scanning & Push Protection
Secret ScanningDetect and prevent the exposure of sensitive information in your code Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure GHASDiscussions related to GitHub Advanced Security Best PracticesBest practices, tips & tricks, and articles from GitHub and its users Show & TellDiscussions where community members share their projects, experiments, or accomplishments Secret ManagementSecret mgmt: store/use/rotate secrets safely (scope, OIDC, vaults). -
You must be logged in to vote 🤖 🔐 Strengthen your Security Posture with these GitHub Advanced Security Resources
Code ScanningCode scanning: our code analysis features, powered by the CodeQL engine Secret ScanningDetect and prevent the exposure of sensitive information in your code Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure GHASDiscussions related to GitHub Advanced Security Secret ManagementSecret mgmt: store/use/rotate secrets safely (scope, OIDC, vaults). source:uiDiscussions created via Community GitHub templates Secret ProtectionSecret Protection prevents exposures, protects credentials, and allows you to ship securely -
You must be logged in to vote 🤖 [GHAS CodeQL Series] - Your Complete Guide to Organization-Wide Code Security
Security and PrivacyProtect your repositories and data with GitHub's security and privacy features Code ScanningCode scanning: our code analysis features, powered by the CodeQL engine Secret ScanningDetect and prevent the exposure of sensitive information in your code Security OverviewSummary of your repository's security status including vulnerabilities and security advisories Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Security ManagerManage and oversee your repository's security settings and alerts EnterpriseDiscussions related to GitHub Enterprise Cloud, Enterprise Server and Organizations GHASDiscussions related to GitHub Advanced Security Best PracticesBest practices, tips & tricks, and articles from GitHub and its users DevOpsBring teams together to deliver better software, faster. Enterprise AdminTopics specifically related to GitHub Enterprise administration Secret ManagementSecret mgmt: store/use/rotate secrets safely (scope, OIDC, vaults). source:uiDiscussions created via Community GitHub templates Secret ProtectionSecret Protection prevents exposures, protects credentials, and allows you to ship securely -
You must be logged in to vote 🤖 Open Source License Compliance is in public preview
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Product FeedbackShare your thoughts and suggestions on GitHub features and improvements source:uiDiscussions created via Community GitHub templates
Discussions
-
You must be logged in to vote 🤖 Code Security (Sarif) UX is painful
Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 Sarif handling of message property is frustrating
Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 When will the new version of the Apache Felix OSGi bundle repository be released?
Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 How to erase the pushed wrong commit entirely?
Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 Is it possible to disable allerts on pull request from
Code Scanninggithub-code-scanningbotCode scanning: our code analysis features, powered by the CodeQL engine Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 Dependabot outage?
DependabotAutomatically update dependencies to keep your project secure and up to date Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 Obligation de changement de mot de passe de quel droit?????!!!!!!
Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 me estan hackeando toda mi informacion
Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 How to report a github account
Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 Snyk
Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 Please, update the Yarn Version
DependabotAutomatically update dependencies to keep your project secure and up to date Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 Digital racism
Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 Limit member access to repos in an organization
Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 Publishing of Updated Security Advisories to the NVD
Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 Dependency-graph submission API
Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 Using CodeQL action without uploading security alerts
Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 Personal Access Token; Why isn't there a Repo:Read scope?
Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 Speed up build in Codeql workflow
Code ScanningCode scanning: our code analysis features, powered by the CodeQL engine Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 Publishing on a free hosting server
Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 Automatically dismiss when "Dependabot hasn't attempted to update {package} as it's no longer vulnerable"
DependabotAutomatically update dependencies to keep your project secure and up to date Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖
Dependabotyarn auditversus Dependabot Vulnerability AlertsAutomatically update dependencies to keep your project secure and up to date Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 dependency review ( Github advanced security) not able to detect security vulnerability in golang library
Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 Dependabot unlocks transitive dependencies
DependabotAutomatically update dependencies to keep your project secure and up to date Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 Dependabot reports security alert for package that is at the version that resolves the security alert
DependabotAutomatically update dependencies to keep your project secure and up to date Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🤖 Server location
Product FeedbackShare your thoughts and suggestions on GitHub features and improvements