community community Code Security · Discussions

Top: All

Code Security Discussions

Conversations related to Code Security. Build security into your GitHub workflow with features to keep secrets and vulnerabilities out of your codebase, and to maintain your software supply chain.

Pinned to Code Security

You must be logged in to vote

Copilot (previously code scanning) Autofix: Preview Feedback and Resources
👂 Feedback Wanted GitHub is asking for your feedback Code Scanning Code scanning: our code analysis features, powered by the CodeQL engine Code Security Build security into your GitHub workflow with features to keep your codebase secure Changelog A discussion post associated with a Changelog post
turbo asked Mar 6, 2024 in Code Security · Unanswered

71
You must be logged in to vote

Secret scanning: on-demand revocation for GitHub personal access tokens - feedback
👂 Feedback Wanted GitHub is asking for your feedback 📣 ANNOUNCEMENT Announcements from the GitHub Community team Code Security Build security into your GitHub workflow with features to keep your codebase secure Question
erinhav asked Sep 27, 2024 in Code Security · Unanswered

0
You must be logged in to vote

Secret scanning: public leak locations and alert de-duplication across an organization or enterprise - feedback
👂 Feedback Wanted GitHub is asking for your feedback 📣 ANNOUNCEMENT Announcements from the GitHub Community team Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
erinhav asked Oct 15, 2024 in Code Security · Unanswered

5
You must be logged in to vote

[Public Preview] Security Campaigns w/ Copilot Autofix 🧑‍💻
👂 Feedback Wanted GitHub is asking for your feedback 📣 ANNOUNCEMENT Announcements from the GitHub Community team Code Scanning Code scanning: our code analysis features, powered by the CodeQL engine Code Security Build security into your GitHub workflow with features to keep your codebase secure Copilot Code accurately and faster with your AI powered pair-programmer. Changelog A discussion post associated with a Changelog post Universe 2024 githubuniverse.com Oct. 29-30
ghostinhershell asked Oct 23, 2024 in Code Security · Unanswered

3
You must be logged in to vote

Behind the Firewall: Checking into the Code Security Community 🤖🪐
Code Security Build security into your GitHub workflow with features to keep your codebase secure Show & Tell Community Check-In Updates & News from GitHub Community Managers
ghostinhershell asked Oct 24, 2024 in Code Security · Unanswered

1

Discussions

You must be logged in to vote

CodeQL: Adopt IaC
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
mcandre asked Sep 25, 2024 in Code Security · Unanswered

4
You must be logged in to vote

Please make all code scanning alerts visible in pull-requests
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
praiskup asked Oct 7, 2024 in Code Security · Unanswered

2
You must be logged in to vote

What is the process to getting dependency graph support for a new package manager? (deno)
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
cotyhamilton asked Sep 20, 2024 in Code Security · Unanswered

2
You must be logged in to vote

Please improve authenticating a git client over SSH
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
JetForMe asked Aug 26, 2024 in Code Security · Unanswered

1
You must be logged in to vote

Managing a fine-grained token per organization is cumbersome
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
mattfysh asked Sep 12, 2024 in Code Security · Unanswered

1
You must be logged in to vote

Copilot Autofix
Code Scanning Code scanning: our code analysis features, powered by the CodeQL engine Copilot Code accurately and faster with your AI powered pair-programmer. Enterprise Discussions related to GitHub Enterprise Cloud and Enterprise Server Product Feedback
Timmmy-nlb asked Sep 20, 2024 in Code Security · Unanswered

2
You must be logged in to vote

can you add 'affected branches' to the secret scanning alert notices
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
JoeNunnelley asked Nov 4, 2024 in Code Security · Unanswered

2
You must be logged in to vote

Campaigns - Filtering
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
spm01d asked Nov 8, 2024 in Code Security · Unanswered

2
You must be logged in to vote

How can I avoid copying powerful codes?
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
AmirHossinBesharati asked Aug 26, 2024 in Code Security · Unanswered

1
You must be logged in to vote

Private Repositories and Trojan:JS/BeaverTail.D!dha
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
ignas-rss asked Aug 27, 2024 in Code Security · Unanswered

1
You must be logged in to vote

Issue responses containing potentially malicious links
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
Analect asked Aug 29, 2024 in Code Security · Unanswered

3
You must be logged in to vote

Mask GHSA notifications by default
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
agilgur5 asked Sep 22, 2024 in Code Security · Unanswered

1
You must be logged in to vote

SECURITY.adoc doesn't show in the README tabs
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
lprimak asked Sep 25, 2024 in Code Security · Unanswered

1
You must be logged in to vote

Dependabot: Warn on non-scoped NPM packages
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
mcandre asked Sep 25, 2024 in Code Security · Unanswered

1
How can I handle multiple token deposits and refunds in a Solidity IFO contract?
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
zerox-alpha asked Sep 23, 2024 in Code Security · Closed · Unanswered

4
You must be logged in to vote

GitHub Security Policy feature Echos Vulnerability Reports using unprotected emails
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
orcmid asked Sep 25, 2024 in Code Security · Unanswered

1
You must be logged in to vote

Dependency Review should highlight security findings fixed
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
matsavage asked Oct 28, 2024 in Code Security · Unanswered

1
You must be logged in to vote

Secret Scanning Alerts should ignore known public "secrets"
Secret Scanning Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
fushi asked Oct 28, 2024 in Code Security · Unanswered

1
You must be logged in to vote

Org Level Security Report Overview Request
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
eslerm asked Nov 7, 2024 in Code Security · Unanswered

1
You must be logged in to vote

Request: Please provide an option to disable permission to dismiss/reopen code scanning alerts
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback
rc3398 asked Oct 16, 2024 in Code Security · Answered

7

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Quick Start Guide: Community Discussions

🚀GitHub Copilot Metrics API GA release now available

Hot off the presses! Check out the new releases in our Universe Roundup

Bring your ideas to life with GitHub Spark [Technical Preview] ⚡

Filter by label

Sorry, something went wrong.

Sorry, something went wrong.

No labels found. Sorry about that.

Categories

Code Security Discussions

Pinned to Code Security

Copilot (previously code scanning) Autofix: Preview Feedback and Resources

Secret scanning: on-demand revocation for GitHub personal access tokens - feedback

Secret scanning: public leak locations and alert de-duplication across an organization or enterprise - feedback

[Public Preview] Security Campaigns w/ Copilot Autofix 🧑‍💻

Behind the Firewall: Checking into the Code Security Community 🤖🪐

Discussions

CodeQL: Adopt IaC

Please make all code scanning alerts visible in pull-requests

What is the process to getting dependency graph support for a new package manager? (deno)

Please improve authenticating a git client over SSH

Managing a fine-grained token per organization is cumbersome

Copilot Autofix

can you add 'affected branches' to the secret scanning alert notices

Campaigns - Filtering

How can I avoid copying powerful codes?

Private Repositories and Trojan:JS/BeaverTail.D!dha

Issue responses containing potentially malicious links

Mask GHSA notifications by default

SECURITY.adoc doesn't show in the README tabs

Dependabot: Warn on non-scoped NPM packages

How can I handle multiple token deposits and refunds in a Solidity IFO contract?

GitHub Security Policy feature Echos Vulnerability Reports using unprotected emails

Dependency Review should highlight security findings fixed

Secret Scanning Alerts should ignore known public "secrets"

Org Level Security Report Overview Request

Request: Please provide an option to disable permission to dismiss/reopen code scanning alerts

community community Code-security Discussions

Pinned Discussions

Categories, most helpful, and community links

Categories

Community links

🤖Code Security Discussions

Pinned to Code Security

Discussions

Code Security Discussions