1,881 Search results for "About code scanning alerts"

With push protection for repositories and organizations, secret scanning blocks contributors from pushing secrets to a repository and generates an alert

If GitHub discovers insecure dependencies in your project, you can view details on the Dependabot alerts tab of your repository. Then, you can update your

Guidance on how to protect the center of your supply chain—the code you write and the code you depend on. About this guide This guide describes the highest

Keeping secrets secure with secret scanning Let GitHub do the hard work of ensuring that tokens, private keys, and other code secrets are not exposed in

GitHub makes extra security features available to customers under an Advanced Security license. These features are also enabled for public repositories

You can fine tune your code scanning configuration to minimize analysis time. There are several approaches you can try to reduce the build time in a code

REST API/ Dependabot/ Alerts REST API endpoints for Dependabot alerts Use the REST API to interact with Dependabot alerts for a repository. Note: The ability

Optimize how you receive notifications about Dependabot alerts. About notifications for Dependabot alerts When Dependabot detects vulnerable dependencies

You can run queries against a CodeQL database extracted from a codebase. About analyzing databases with the CodeQL CLI To analyze a codebase, you run queries

Create sophisticated formatting for your prose and code on GitHub with simple syntax. Headings To create a heading, add one to six # symbols before your