# Working with push protection from the REST API

Learn your options for unblocking your push to GitHub using the REST API if secret scanning detects a secret in the content of your API request.

## About push protection from the REST API

Push protection prevents you from accidentally committing secrets to a repository by blocking pushes containing supported secrets.

The "Create a blob" and "Create or update file contents" endpoints in the REST API include push protection. See [Git 블롭에 대한 REST API 엔드포인트](/ko/enterprise-server@3.18/rest/git/blobs?apiVersion=2022-11-28#create-a-blob) and [리포지토리 콘텐츠에 대한 REST API 엔드포인트](/ko/enterprise-server@3.18/rest/repos/contents?apiVersion=2022-11-28#create-or-update-file-contents).

If you make a request with these endpoints whose content includes a supported secret, the REST API will return a 409 error, indicating that a secret has been detected.

To resolve the error, you can either:

* **Remove** the secret from the content of your API request before trying again.
* **Create a push protection bypass:** You can bypass push protection using the "Create a push protection bypass" endpoint. For more information, see [비밀 검사를 위한 REST API 엔드포인트](/ko/enterprise-server@3.18/rest/secret-scanning/secret-scanning?apiVersion=2022-11-28#create-a-push-protection-bypass).

## Further reading

* [Working with push protection from the command line](/ko/enterprise-server@3.18/code-security/secret-scanning/working-with-secret-scanning-and-push-protection/working-with-push-protection-from-the-command-line)
* [GitHub UI에서 푸시 보호 작업](/ko/enterprise-server@3.18/code-security/secret-scanning/working-with-secret-scanning-and-push-protection/working-with-push-protection-in-the-github-ui)