Skip to main content

Keeping secrets secure with secret scanning

Let GitHub do the hard work of ensuring that tokens, private keys, and other code secrets are not exposed in your repository.

Secret scanning alerts for partners run automatically on all public repositories. If you have a license for GitHub Advanced Security, you can enable and configure secret scanning alerts for users for any repository owned by an organization. For more information, see "About secret scanning alerts for users" and "About GitHub Advanced Security."