-
Notifications
You must be signed in to change notification settings - Fork 2.3k
community community Code-security Discussions
Sort by:
Latest activity
Label
🤖 Code Security Discussions
Conversations related to Code Security. Build security into your GitHub workflow with features to keep secrets and vulnerabilities out of your codebase, and to maintain your software supply chain.
Pinned to Code Security
-
You must be logged in to vote 🤖 -
You must be logged in to vote 🤖 Code security insights on the organization-level Security tab (Beta)
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Show & Tell -
You must be logged in to vote 🤖 Grouped Security PRs for Dependabot Public Beta Feedback
Dependabot Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure General -
You must be logged in to vote 🤖 Locking up 2024 [Code Security Mini Check-in]
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Push protection is enabled for free users on GitHub
📣 ANNOUNCEMENTAnnouncements from the GitHub Community team Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure -
You must be logged in to vote 🤖 Secret scanning's delegated bypass controls for push protection (public beta) - feedback
👂 Feedback WantedGitHub is asking for your feedback Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Product Feedback
Discussions
-
You must be logged in to vote 🤖 Dependabot alert feature support for Bitbucket
Dependabot Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 API support for managing comments on Security advisories and vulnerability reporting
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Fixing of Velnarability under SAST
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Dependabot raises new alerts without any changes
Dependabot Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Dependabot Gem Updates
Dependabot Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Difference between pull_request and pull_request_target GHA triggers
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Add custom rules to dependabot
Dependabot Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 False Positive for Atlassian API Token in a binary file
BugSomething isn't working correctly Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure -
You must be logged in to vote 🤖 Can I limit dependabot to only open PRs when items in requirements txt have related CVE?
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question -
You must be logged in to vote 🤖 Can i know by when do you plan to address the CVE that is showing up in the product "Nicolaka/Netshoot" latest docker image?
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question -
You must be logged in to vote 🤖 Dependabot PR prefixes
Dependabot Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question -
You must be logged in to vote 🤖 Dependabot on Actions
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Product Feedback -
You must be logged in to vote 🤖 SOC 2 or ISO 27001 certificate
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Adding custom secret pattern to public repos in Free plan
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Someone has used my website code and left my about page text about me as well as stats counter
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Dependabot issues, overriding sub sub dependency versions
Dependabot Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Missing Code Folder
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Cargo workspaces?
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question -
You must be logged in to vote 🤖 Automation to check and block the build if there are high and critical issues
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 invalid registries config in dependabot.yml
Dependabot Discussions Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Securing and filtering OpenID connect to AWS (and perhaps other cloud providers)
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 <Code Scanning for Mule soft>
Code ScanningCode scanning: our code analysis features, powered by the CodeQL engine Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 How to deal with code-signing in completely on-cloud machines set up
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 Git Advanced Security - Path Analysis?
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure GHASDiscussions related to GitHub Advanced Security Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote 🤖 What is the maximum time in Dependabot update and how to extend it?
Dependabot Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Question inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale.