roadmap icon indicating copy to clipboard operation
roadmap copied to clipboard
verified publisher icon github

Secret scanning detects secrets leaked in pull requests and discussions

Open github-product-roadmap opened this issue 2 years ago • 1 comments

Summary

Secret scanning currently scans commit content for all supported patterns. We're extending the breadth of our scans for Advanced Security customers to cover pull requests and discussions, plus all related comments.

Intended Outcome

While most secret leaks occur in code content, a portion do also leak in other content types, including pull requests and discussions. We're expanding the scope of our scans for more exhaustive coverage to better protect our users across GitHub.

How will it work?

Advanced Security customers will be able to view detections found in private and public repositories for these content types within the secret scanning UI and REST API.

github-product-roadmap avatar Jan 25 '23 18:01 github-product-roadmap

🚢 This has shipped: https://github.blog/changelog/2023-12-04-secret-scanning-now-detects-new-secrets-in-github-discussion-content.

Leaving open to track for GHES.

ankneis avatar Dec 12 '23 16:12 ankneis