Pinned to Code Security

• 57 You must be logged in to vote

  🤖

  CodeQL now supports Rust

  🚀 Shipped A feature has been released 📣 ANNOUNCEMENT Announcements from the GitHub Community team Code Security Build security into your GitHub workflow with features to keep your codebase secure General General topics and discussions that don't fit into other categories, but are related to GitHub Changelog A discussion post associated with a Changelog post

  coadaflorin asked Jun 5, 2025 in Code Security · Unanswered

  

  

  

  

  28
• 18 You must be logged in to vote

  🤖

  Getting Back to What Matters with GHAS 👨🏾‍💻

  Code Security Build security into your GitHub workflow with features to keep your codebase secure GHAS Discussions related to GitHub Advanced Security Show & Tell Discussions where community members share their projects, experiments, or accomplishments Community Check-In Updates & News from GitHub Community Managers

  ghostinhershell asked Jun 30, 2025 in Code Security · Unanswered

  9
• 13 You must be logged in to vote

  🤖

  ❗[START HERE] Welcome to the Code Security Community! 🔐

  Code Security Build security into your GitHub workflow with features to keep your codebase secure Show & Tell Discussions where community members share their projects, experiments, or accomplishments Community Check-In Updates & News from GitHub Community Managers

  ghostinhershell asked Jul 11, 2025 in Code Security · Unanswered

  12
• 8 You must be logged in to vote

  🤖

  🛡️ Keep Your Project Safe with Rulesets

  Repositories The core of version-controlled code storage Code Security Build security into your GitHub workflow with features to keep your codebase secure Best Practices Best practices, tips & tricks, and articles from GitHub and its users

  ghostinhershell asked Sep 2, 2025 in Code Security · Unanswered

  3
• 7 You must be logged in to vote

  🤖

  Assignable alerts for code scanning and secret scanning are now in public preview

  🚀 Shipped A feature has been released 📣 ANNOUNCEMENT Announcements from the GitHub Community team Code Scanning Code scanning: our code analysis features, powered by the CodeQL engine Secret Scanning Detect and prevent the exposure of sensitive information in your code Code Security Build security into your GitHub workflow with features to keep your codebase secure Changelog A discussion post associated with a Changelog post

  samus-aran asked Sep 19, 2025 in Code Security · Unanswered

  

  

  

  

  25
• 1 You must be logged in to vote

  🤖

  🔒 Secure Velocity: Copilot & CodeQL Advancements (GA + Preview)

  📣 ANNOUNCEMENT Announcements from the GitHub Community team Code Security Build security into your GitHub workflow with features to keep your codebase secure Universe 2025 githubuniverse.com Oct. 28-29

  ebndev asked Oct 27, 2025 in Code Security · Unanswered

  0

Discussions

• 46 You must be logged in to vote

  🤖

  Copilot (previously code scanning) Autofix: Preview Feedback and Resources

  Code Scanning Code scanning: our code analysis features, powered by the CodeQL engine Code Security Build security into your GitHub workflow with features to keep your codebase secure Changelog A discussion post associated with a Changelog post

  turbo asked Mar 6, 2024 in Code Security · Unanswered

  

  

  

  

  79
• 1 You must be logged in to vote

  🤖

  Introducing extended metadata checks for secret scanning

  🚀 Shipped A feature has been released 📣 ANNOUNCEMENT Announcements from the GitHub Community team Secret Scanning Detect and prevent the exposure of sensitive information in your code Code Security Build security into your GitHub workflow with features to keep your codebase secure Changelog A discussion post associated with a Changelog post Universe 2025 githubuniverse.com Oct. 28-29

  ghostinhershell asked Oct 15, 2025 in Code Security · Unanswered

  

  

  0
• 24 You must be logged in to vote

  🤖

  [Public Preview] Security Campaigns w/ Copilot Autofix 🧑‍💻

  📣 ANNOUNCEMENT Announcements from the GitHub Community team Code Scanning Code scanning: our code analysis features, powered by the CodeQL engine Code Security Build security into your GitHub workflow with features to keep your codebase secure Copilot Code accurately and faster with your AI powered pair-programmer. Changelog A discussion post associated with a Changelog post Universe 2024 githubuniverse.com Oct. 29-30

  ghostinhershell asked Oct 23, 2024 in Code Security · Unanswered

  

  

  

  

  11
• 1 You must be logged in to vote

  🤖

  Security campaigns for secret scanning alerts are now in public preview

  🚀 Shipped A feature has been released 📣 ANNOUNCEMENT Announcements from the GitHub Community team Secret Scanning Detect and prevent the exposure of sensitive information in your code Code Security Build security into your GitHub workflow with features to keep your codebase secure Changelog A discussion post associated with a Changelog post

  samus-aran asked Sep 16, 2025 in Code Security · Unanswered

  

  

  

  

  3
• 2 You must be logged in to vote

  🤖

  Dependabot Support for Gradle Lockfiles is Now Generally Available

  🚀 Shipped A feature has been released 📣 ANNOUNCEMENT Announcements from the GitHub Community team Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Changelog A discussion post associated with a Changelog post

  ghostinhershell asked Jun 24, 2025 in Code Security · Unanswered

  

  

  2
• 6 You must be logged in to vote

  🤖

  🛡️ Security Configurations: Run CodeQL with Default or Advanced Setup

  📣 ANNOUNCEMENT Announcements from the GitHub Community team Code Scanning Code scanning: our code analysis features, powered by the CodeQL engine Code Security Build security into your GitHub workflow with features to keep your codebase secure Show & Tell Discussions where community members share their projects, experiments, or accomplishments Changelog A discussion post associated with a Changelog post

  ghostinhershell asked Jul 17, 2025 in Code Security · Unanswered

  

  

  2
• 9 You must be logged in to vote

  🤖

  Security campaigns are now generally available to help address security debt at scale

  🚀 Shipped A feature has been released 📣 ANNOUNCEMENT Announcements from the GitHub Community team Code Security Build security into your GitHub workflow with features to keep your codebase secure General General topics and discussions that don't fit into other categories, but are related to GitHub Changelog A discussion post associated with a Changelog post

  tuves asked Apr 2, 2025 in Code Security · Unanswered

  

  

  

  

  12
• 31 You must be logged in to vote

  🤖

  📣 Exciting news for GitHub Advanced Security!

  Dependabot Automatically update dependencies to keep your project secure and up to date Code Scanning Code scanning: our code analysis features, powered by the CodeQL engine Secret Scanning Detect and prevent the exposure of sensitive information in your code Code Security Build security into your GitHub workflow with features to keep your codebase secure Enterprise Discussions related to GitHub Enterprise Cloud, Enterprise Server and Organizations GHAS Discussions related to GitHub Advanced Security Changelog A discussion post associated with a Changelog post

  tuves asked Mar 4, 2025 in Code Security · Unanswered

  

  

  

  

  37
• 2 You must be logged in to vote

  🤖

  Dependabot Now Supports Configuration of a Minimum Package Age 🤖

  Enhancement An idea, feature request, or improvement to a GitHub feature Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Show & Tell Discussions where community members share their projects, experiments, or accomplishments Changelog A discussion post associated with a Changelog post

  ghostinhershell asked Jul 8, 2025 in Code Security · Unanswered

  

  

  0
• 3 You must be logged in to vote

  🤖

  Delegated Alert Dismissal for Code Scanning is Now Generally Available ♻️

  🚀 Shipped A feature has been released Code Scanning Code scanning: our code analysis features, powered by the CodeQL engine Code Security Build security into your GitHub workflow with features to keep your codebase secure Show & Tell Discussions where community members share their projects, experiments, or accomplishments Changelog A discussion post associated with a Changelog post

  ghostinhershell asked Jul 8, 2025 in Code Security · Unanswered

  

  

  0
• 1 You must be logged in to vote

  🤖

  Dependabot: Single Pull Request for Multi-Ecosystem Support 🚀

  Enhancement An idea, feature request, or improvement to a GitHub feature Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Show & Tell Discussions where community members share their projects, experiments, or accomplishments Changelog A discussion post associated with a Changelog post

  ghostinhershell asked Jul 8, 2025 in Code Security · Unanswered

  

  

  0
• 2 You must be logged in to vote

  🤖

  ⚙️ Configure Which Secret Scanning Patterns Are Included in Push Protection (Public Preview)

  🚀 Shipped A feature has been released 📣 ANNOUNCEMENT Announcements from the GitHub Community team Secret Scanning Detect and prevent the exposure of sensitive information in your code Code Security Build security into your GitHub workflow with features to keep your codebase secure Changelog A discussion post associated with a Changelog post

  ghostinhershell asked Jun 27, 2025 in Code Security · Unanswered

  

  

  

  

  2
• 3 You must be logged in to vote

  🤖

  ❕ Upcoming Change: Dependabot Compute Migration to GitHub Actions

  📣 ANNOUNCEMENT Announcements from the GitHub Community team Actions Build, test, and automate your deployment pipeline with world-class CI/CD Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Changelog A discussion post associated with a Changelog post

  ghostinhershell asked Jun 23, 2025 in Code Security · Unanswered

  

  

  1
• 2 You must be logged in to vote

  🤖

  Dependabot Metrics Page (Private Preview): Helping GHAS Code Security Users Prioritize Vulnerabilities

  🚀 Shipped A feature has been released 📣 ANNOUNCEMENT Announcements from the GitHub Community team Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Changelog A discussion post associated with a Changelog post

  ghostinhershell asked Jun 24, 2025 in Code Security · Unanswered

  

  

  0
• 2 You must be logged in to vote

  🤖

  ✅ Enforce Admission Policies with Artifact Attestations in Kubernetes using OPA Gatekeeper (Public Preview)

  🚀 Shipped A feature has been released 📣 ANNOUNCEMENT Announcements from the GitHub Community team API and Webhooks Discussions related to GitHub's APIs or Webhooks Code Security Build security into your GitHub workflow with features to keep your codebase secure Enterprise Discussions related to GitHub Enterprise Cloud, Enterprise Server and Organizations Show & Tell Discussions where community members share their projects, experiments, or accomplishments Changelog A discussion post associated with a Changelog post

  ghostinhershell asked Jun 24, 2025 in Code Security · Unanswered

  

  

  0
• 2 You must be logged in to vote

  🤖

  🔍 Secret Scanning REST API: New Response Fields Now Generally Available

  🚀 Shipped A feature has been released 📣 ANNOUNCEMENT Announcements from the GitHub Community team API and Webhooks Discussions related to GitHub's APIs or Webhooks Secret Scanning Detect and prevent the exposure of sensitive information in your code Code Security Build security into your GitHub workflow with features to keep your codebase secure Show & Tell Discussions where community members share their projects, experiments, or accomplishments Changelog A discussion post associated with a Changelog post

  ghostinhershell asked Jun 24, 2025 in Code Security · Unanswered

  

  

  0
• 6 You must be logged in to vote

  🤖

  [Public Beta] CodeQL can scan Java and C# projects without a build

  Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements Changelog A discussion post associated with a Changelog post

  coadaflorin asked Mar 21, 2024 in Code Security · Unanswered

  

  

  

  

  16
• 9 You must be logged in to vote

  🤖

  Easily distinguish between direct and transitive dependencies for npm packages 🚀

  📣 ANNOUNCEMENT Announcements from the GitHub Community team Packages Host your dependencies, libraries, and production-ready code, right from your repository Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements npm Discussions around programming langages, open source and software development Changelog A discussion post associated with a Changelog post

  ahpook asked Feb 20, 2025 in Code Security · Unanswered

  

  

  

  

  10
• 6 You must be logged in to vote

  🤖

  [GA] Dependabot now supports pnpm workspace catalogs! 🎉

  📣 ANNOUNCEMENT Announcements from the GitHub Community team Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Changelog A discussion post associated with a Changelog post

  ghostinhershell asked Feb 5, 2025 in Code Security · Unanswered

  

  

  1
• 14 You must be logged in to vote

  🤖

  Secret scanning's delegated bypass controls for push protection (public beta) - feedback

  Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements Changelog A discussion post associated with a Changelog post

  courtneycl asked May 1, 2024 in Code Security · Unanswered

  

  

  

  

  23
• 4 You must be logged in to vote

  🤖

  Automatically Update Bun Dependencies with Dependabot

  📣 ANNOUNCEMENT Announcements from the GitHub Community team Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Changelog A discussion post associated with a Changelog post

  ghostinhershell asked Feb 25, 2025 in Code Security · Unanswered

  

  

  1
• 2 You must be logged in to vote

  🤖

  CodeQL 2.20.6 Release: Enhanced Support and Improved Accuracy 🎯

  🚀 Shipped A feature has been released 📣 ANNOUNCEMENT Announcements from the GitHub Community team Code Scanning Code scanning: our code analysis features, powered by the CodeQL engine Code Security Build security into your GitHub workflow with features to keep your codebase secure Changelog A discussion post associated with a Changelog post

  ghostinhershell asked Mar 12, 2025 in Code Security · Unanswered

  

  

  0
• 1 You must be logged in to vote

  🤖

  📣 Updates to Secret Scanning Alerts: Generic Category for Non-Provider Patterns and Copilot-Detected Passwords

  🚀 Shipped A feature has been released Secret Scanning Detect and prevent the exposure of sensitive information in your code Code Security Build security into your GitHub workflow with features to keep your codebase secure Copilot Code accurately and faster with your AI powered pair-programmer. Changelog A discussion post associated with a Changelog post

  ghostinhershell asked Mar 12, 2025 in Code Security · Unanswered

  

  

  0