Hinweis: Secret scanning-Metriken für den Pushschutz befinden sich derzeit in der Betaphase und können sich jederzeit ändern.
About metrics for secret scanning push protection
The metrics overview for secret scanning push protection helps you to understand how well you are preventing security leaks in your organization or across organizations in your enterprise. You can use the metrics to assess how push protection is performing, and to easily identify the repositories where you may need to take action in order to prevent leaks of sensitive information.
The overview shows you a summary of how many pushes containing secrets have been successfully blocked by push protection, as well as how many times push protection was bypassed.
You can also find more granular metrics, such as:
- The secret types that have been blocked or bypassed the most
- The repositories that have had the most pushes blocked
- The repositories that are bypassing push protection the most
- The percentage distribution of reasons that users give when they bypass the protection
Use the date picker to set the time range that you want to view alert activity and metrics for, and click in the search box to add further filters on the alerts and metrics displayed. For more information, see "Filtern von Warnungen in der Sicherheitsübersicht."
You can see secret scanning metrics if you have:
- The
admin
role for the repository. - A custom repository role with the "View secret scanning results" fine-grained permissions for the repository. For more information, see "Informationen zu benutzerdefinierten Repositoryrollen."
- Access to alerts for the repository. For more information, see "Verwalten von Sicherheits- und Analyseeinstellungen für dein Repository."
The metrics are based on activity from the default period or your selected period.
Viewing metrics for secret scanning push protection for an organization
-
Navigiere auf GitHub.com zur Hauptseite der Organisation.
-
Klicke unter deinem Organisationsnamen auf die Option -Sicherheit.
-
In the sidebar, under "Metrics", click Secret scanning.
-
Click on an individual secret type or repository to see the associated Warnungen zur Geheimnisüberprüfung for your organization.
-
You can use the options at the top of the page to filter the group of repositories that you want to see secret scanning metrics for.
- Use the date picker to set the time range that you want to view metrics for. Note that the date used by the date picker corresponds to the date a secret was bypassed on.
- Click in the search box to add further filters on the secret scanning metrics displayed. For more information, see "Filtern von Warnungen in der Sicherheitsübersicht."
Viewing metrics for secret scanning push protection for an enterprise
You can view metrics for secret scanning push protection across organizations in an enterprise. Die in der Sicherheitsübersicht angezeigten Informationen variieren je nach Zugriff auf Repositorys und Organisationen und je nachdem, ob GitHub Advanced Security von diesen Repositorys und Organisationen genutzt wird. Weitere Informationen findest du unter Informationen zur Sicherheitsübersicht.
Tip
You can use the owner
filter in the search field to filter the data by organization. If you're an owner of an Unternehmen mit verwalteten Benutzer*innen, you can use the owner-type
filter to filter the data by the type of repository owner, so that you can view data from either organization-owned repositories or user-owned repositories. For more information, see "Filtern von Warnungen in der Sicherheitsübersicht."
-
Navigieren Sie zu GitHub Enterprise Cloud.
-
Klicken Sie in der oberen rechten Ecke von GitHub auf Ihr Profilfoto und dann auf Ihre Unternehmen.
-
Klicke in der Liste der Unternehmen auf das Unternehmen, das du anzeigen möchtest.
-
Klicken Sie auf der linken Seite der Seite in der Enterprise-Konto Randleiste auf Code Sicherheit.
-
In the sidebar, click Secret scanning metrics.
-
Click on an individual secret type or repository to see the associated Warnungen zur Geheimnisüberprüfung for your enterprise.
-
You can use the options at the top of the page to filter the group of repositories that you want to see secret scanning metrics for.
- Use the date picker to set the time range that you want to view metrics for. Note that the date used by the date picker corresponds to the date a secret was bypassed on.
- Click in the search box to add further filters on the secret scanning metrics displayed. For more information, see "Filtern von Warnungen in der Sicherheitsübersicht."