Skip to main content

AI を利用した汎用シークレット検出の有効化

リポジトリに対して AI を利用した汎用シークレット検出を有効にすることができます。 パスワードなどの汎用シークレットのアラートは、secret scanning アラート ページの別の一覧に表示されます。

Note: Generic secret detection for secret scanning is in beta. Functionality and documentation are subject to change. If you have an enterprise account and use GitHub Advanced Security, you can join the waitlist for GitHub Advanced Security AI features.

During this phase, generic secret detection is limited to looking for passwords in source code.

Enabling AI-powered generic secret detection for your repository

To use generic secret detection, your enterprise owner must first set a policy at the enterprise level.

You can then enable the feature in the "Code security and analysis" settings page of your repository.

  1. On, navigate to the main page of the repository.

  2. Under your repository name, click Settings. If you cannot see the "Settings" tab, select the dropdown menu, then click Settings.

    Screenshot of a repository header showing the tabs. The "Settings" tab is highlighted by a dark orange outline.

  3. In the "Security" section of the sidebar, click Code security and analysis.

  4. Under "Code security and analysis", find "GitHub Advanced Security."

  5. Under "Secret scanning", select the checkbox next to "Use AI detection to find additional secrets".

For information on how to view alerts for generic secrets that have been detected using AI, see "Managing alerts from secret scanning."

Further reading