Secret scanning delegated bypass for push protection - GA #981
Labels
cloud
Available on Cloud
ga
Feature phase: Generally available
github advanced security
Product SKU: GitHub Advanced Security
secret scanning
Feature: Github Secret Scanning
Comments
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Summary
Security teams need more configurability over who can bypass push protection to balance security and developer productivity effectively. By integrating secret scanning's push protection into repository rulesets, Application Security teams can provide fine-grained control over which users can approve requested bypasses. Developers will have the ability to request approval from authorized users to push a blocked secret.
Intended Outcome
Delegated bypass will ensure that push protection is not accidentally bypassed by developers, and prevent secrets from being leaked in the repository.
How will it work?
The GA of delegated bypass will include experience improvements identified in beta, webhook and API support, and metrics.
The text was updated successfully, but these errors were encountered: