Getting started with code security

An overview of GitHub security features.

You can use Dependabot to alert you when your repository is using a software dependency with a known vulnerability. This guide will help get you started on enabling Dependabot for a repository, and exploring reported alerts.

You can use a number of GitHub features to help keep your repository secure.

You can give instructions for how to report a security vulnerability in your project by adding a security policy to your repository.

GitHub provides a variety of tools you can use to audit and monitor actions taken in response to security alerts.

Learn guidance and recommendations to help you avoid private or sensitive data present in your organization from being exposed.