此版本的 GitHub Enterprise 已停止服务 2022-10-12. 即使针对重大安全问题,也不会发布补丁。 为了获得更好的性能、更高的安全性和新功能,请升级到最新版本的 GitHub Enterprise。 如需升级帮助,请联系 GitHub Enterprise 支持。
Code security guides
了解 GitHub Enterprise Server 可以帮助您提高代� �安全性的不同方式。
- 1概述
关于代� �扫描
您可以使用 code scanning 在 GitHub 上查找项目中的安全漏洞和代� �错误。 - 2操作指南
Setting up code scanning for a repository
You can set up code scanning by adding a workflow to your repository. - 3操作指南
Configuring code scanning
You can configure how GitHub scans the code in your project for vulnerabilities and errors. - 4操作指南
Configuring the CodeQL workflow for compiled languages
You can configure how GitHub uses the CodeQL analysis workflow to scan code written in compiled languages for vulnerabilities and errors. - 5操作指南
Running CodeQL code scanning in a container
You can run code scanning in a container by ensuring that all processes run in the same container. - 6操作指南
Troubleshooting the CodeQL workflow
If you're having problems with code scanning, you can troubleshoot by using these tips for resolving issues.
All Code security guides
将安全策略添� 到存储库
操作指南您可以为仓库添� 安全政策,说明如何报告项目中的安全漏洞。
- Security policies
- Vulnerabilities
- Repositories
- Health
GitHub security features
概述An overview of GitHub security features.
- Repositories
- Dependencies
- Vulnerabilities
- Advanced Security
Securing your organization
操作指南You can use a number of GitHub features to help keep your organization secure.
- Organizations
- Dependencies
- Vulnerabilities
- Advanced Security
Securing your repository
操作指南You can use a number of GitHub features to help keep your repository secure.
- Repositories
- Dependencies
- Vulnerabilities
- Advanced Security
About secret scanning
概述GitHub Enterprise Server scans repositories for known types of secrets, to prevent fraudulent use of secrets that were committed accidentally.
- Secret scanning
- Advanced Security
Configuring secret scanning for your repositories
操作指南You can configure how GitHub scans your repositories for secrets that match advanced security patterns.
- Secret scanning
- Advanced Security
- Repositories
Defining custom patterns for secret scanning
操作指南You can extend secret scanning to detect secrets beyond the default patterns.
- Advanced Security
- Secret scanning
Managing alerts from secret scanning
操作指南You can view and close alerts for secrets checked in to your repository.
- Secret scanning
- Advanced Security
- Alerts
- Repositories
机密扫描模式
参考支持的机密列表和 GitHub 与之合作的合作伙伴,以防止欺诈性使用意外提交的机密。
- Secret scanning
- Advanced Security