GitHub Can Now Block Secret Leaks Automatically

Share post:

GitHub has expanded the secret scanning capabilities of its code hosting platform for GitHub Advanced Security customers.

The new feature, known as push protection, enables Advanced Security customers to automatically block secret leaks and is designed to prevent accidental disclosure of credentials before code is transferred to remote repositories.

“With push protection, GitHub will check for high-confidence secrets as developers push code and block the push if a secret is identified. To make this possible without disrupting development productivity, push protection only supports token types that can be detected accurately,” GitHub said.

Once GitHub Enterprise Cloud identifies a secret before pushing the code, the git is blocked. This allows developers to review and remove the secrets from the code they tried to push to remote repos.

GitHub Advanced Security customers can enable the feature at both the repository and organizational levels. They can do this through the API or with just one click from the user interface.

For more information, read the original story in BleepingComputer.

Featured Tech Jobs

SUBSCRIBE NOW

Related articles

AI presents an “extinction level threat” – US Gov’t Report: Hashtag Trending for Tuesday, March 12, 2024

A new US government report warns that AI presents an “extinction level threat to the human species. Elon Musk is outsourcing his Grok AI code. Hackers have breached the Cybersecurity and Infrastructure Security Agency in the US and a researcher shows how to steal a Tesla by leveraging a feature of the Tesla charging stations.

Robot startup uses ChatGPT to enhance its communications and reasoning skills

Humanoid robot startup Figure has secured a significant $675 million investment from a group of high-profile investors, including...

Lawsuit requires Pegasus spyware to provide code used to spy on WhatsApp users

NSO Group, the developer behind the sophisticated Pegasus spyware, has been ordered by a US court to provide...

OpenAI claims New York Times manipulated ChatGPT “fabricate data”

OpenAI has challenged the New York Times' copyright lawsuit, asserting the newspaper manipulated ChatGPT to fabricate evidence. The...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways