Keeping secrets secure

Let GitHub do the hard work of ensuring that tokens, private keys, and other code secrets are not exposed in your repository.

Secret scanning is available for organization-owned repositories where GitHub Advanced Security is enabled. For more information, see "About GitHub Advanced Security."

Did this doc help you?Privacy policy

Help us make these docs great!

All GitHub docs are open source. See something that's wrong or unclear? Submit a pull request.

Make a contribution

Or, learn how to contribute.