Skip to main content

Habilitar a detecção de segredos genéricos da plataforma AI

Você pode habilitar a detecção de segredos genéricos da plataforma AI no seu repositório. Os alertas para segredos genéricos, como senhas, são exibidos em outra lista na página de alertas de secret scanning.

Note: Generic secret detection for secret scanning is in beta. Functionality and documentation are subject to change. If you have an enterprise account and use GitHub Advanced Security, you can join the waitlist for GitHub Advanced Security AI features.

During this phase, generic secret detection is limited to looking for passwords in source code.

Enabling AI-powered generic secret detection for your repository

To use generic secret detection, your enterprise owner must first set a policy at the enterprise level.

You can then enable the feature in the "Code security and analysis" settings page of your repository.

  1. On GitHub.com, navigate to the main page of the repository.

  2. Under your repository name, click Settings. If you cannot see the "Settings" tab, select the dropdown menu, then click Settings.

    Screenshot of a repository header showing the tabs. The "Settings" tab is highlighted by a dark orange outline.

  3. In the "Security" section of the sidebar, click Code security and analysis.

  4. Under "Code security and analysis", find "GitHub Advanced Security."

  5. Under "Secret scanning", select the checkbox next to "Use AI detection to find additional secrets".

For information on how to view alerts for generic secrets that have been detected using AI, see "Managing alerts from secret scanning."

Further reading