About additional settings for secret scanning
There are some additional secret scanning settings that cannot be applied to repositories using security configurations, so you must configure these settings separately:
These additional settings only apply to repositories with both GitHub Advanced Security and secret scanning enabled.
Accessing the additional settings for secret scanning
- 在 GitHub 的右上角,单击你的个人资料照片。
- 根据环境,单击“你的企业”,或单击“你的企业”,然后单击要查看的企业********。
- 在页面左侧的企业帐户边栏中,单击 “设置”。
- In the left sidebar, click Code security.
- Scroll down the page to the "Additional settings" section.
Configuring a resource link for push protection
To provide context for developers when secret scanning blocks a commit, you can display a link with more information on why the commit was blocked.
- Under "Additional settings", to the right of "Resource link for push protection", click .
- In the text box, type the link to the desired resource, then click .
Configuring AI detection to find additional secrets
Copilot 机密扫描's 通用机密检测 is an AI-powered expansion of secret scanning that scans and creates alerts for unstructured secrets, such as passwords.
- Under "Additional settings", to the right of "Use AI detection to find additional secrets", ensure the setting is toggled to "On".
Note
无需订阅 GitHub Copilot 即可使用 Copilot 机密扫描 的 通用机密检测。 Copilot 机密扫描 功能可用于启用了 GitHub Advanced Security 的 GitHub Enterprise Cloud 企业中的专用存储库。
To learn more about generic secrets, see 使用 Copilot 机密扫描负责任地检测通用机密.