community community Code-security Discussions
Pinned Discussions
Sort by:
Latest activity
Label
Categories
🤖 Code Security Discussions
Conversations related to Code Security. Build security into your GitHub workflow with features to keep secrets and vulnerabilities out of your codebase, and to maintain your software supply chain.
Pinned to Code Security
-
You must be logged in to vote 🤖 -
You must be logged in to vote 🤖 Code security insights on the organization-level Security tab (Beta)
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Show & Tell -
You must be logged in to vote 🤖 Grouped Security PRs for Dependabot Public Beta Feedback
Dependabot Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure General -
You must be logged in to vote 🤖 Push protection is enabled for free users on GitHub
📣 ANNOUNCEMENTAnnouncements from the GitHub Community team Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure -
You must be logged in to vote 🤖 Secret scanning's delegated bypass controls for push protection (public beta) - feedback
👂 Feedback WantedGitHub is asking for your feedback Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Product Feedback -
You must be logged in to vote 🤖 🔐 Secret scanning validity checks are generally available! - Feedback
👂 Feedback WantedGitHub is asking for your feedback 📣 ANNOUNCEMENTAnnouncements from the GitHub Community team Secret Scanning Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure GHASDiscussions related to GitHub Advanced Security
Discussions
-
You must be logged in to vote 🤖 [Dependabot] Sudden change in access required for dependabot commands. Is this documented?
Dependabot Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question -
You must be logged in to vote 🤖 Double checking how to remove .env from repo
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question -
You must be logged in to vote 🤖 2FA with multiple admin accounts/users
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 hyper and h2 vulnerable to denial of service High severity GitHub Reviewed Published 8 hours ago to the GitHub Advisory Database • Updated 2 hours ago [Vulnerability details](https://github.com/advisories/GHSA-f8vr-r385-rh5r)
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Codescaning for R Language
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Dependabot alert feature support for Bitbucket
Dependabot Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 API support for managing comments on Security advisories and vulnerability reporting
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Fixing of Velnarability under SAST
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Dependabot raises new alerts without any changes
Dependabot Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Dependabot Gem Updates
Dependabot Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Difference between pull_request and pull_request_target GHA triggers
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Add custom rules to dependabot
Dependabot Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Can I limit dependabot to only open PRs when items in requirements txt have related CVE?
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question -
You must be logged in to vote 🤖 Can i know by when do you plan to address the CVE that is showing up in the product "Nicolaka/Netshoot" latest docker image?
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question -
You must be logged in to vote 🤖 Dependabot PR prefixes
Dependabot Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question -
You must be logged in to vote 🤖 SOC 2 or ISO 27001 certificate
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Adding custom secret pattern to public repos in Free plan
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Someone has used my website code and left my about page text about me as well as stats counter
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Dependabot issues, overriding sub sub dependency versions
Dependabot Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 SSH Key add
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Missing Code Folder
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Cargo workspaces?
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question -
You must be logged in to vote 🤖 Automation to check and block the build if there are high and critical issues
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 invalid registries config in dependabot.yml
Dependabot Discussions Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Securing and filtering OpenID connect to AWS (and perhaps other cloud providers)
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale.