GitHub Community
community community Code-security Discussions
Pinned Discussions
Code Security Discussions
Conversations related to Code Security. Build security into your GitHub workflow with features to keep secrets and vulnerabilities out of your codebase, and to maintain your software supply chain.
Pinned to Code Security
-
You must be logged in to vote 📣 Exciting news for GitHub Advanced Security!
DependabotAutomatically update dependencies to keep your project secure and up to date Code ScanningCode scanning: our code analysis features, powered by the CodeQL engine Secret ScanningDetect and prevent the exposure of sensitive information in your code Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure EnterpriseDiscussions related to GitHub Enterprise Cloud, Enterprise Server and Organizations GHASDiscussions related to GitHub Advanced Security ChangelogA discussion post associated with a Changelog post -
You must be logged in to vote 🔥 Challenge: Sharpen Your Skills with SQL Injection Labs!
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Show & TellDiscussions where community members share their projects, experiments, or accomplishments Community Check-InUpdates & News from GitHub Community Managers
Discussions
-
You must be logged in to vote "Known security vulnerabilities detected" but what is esbuild?
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage -
You must be logged in to vote Risk view 'export CSV' function is missing severity context.
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote Can unbounded goroutines in Go act as a DoS vector? Affecting live SEO tool performance
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage -
You must be logged in to vote Security campaigns are now generally available to help address security debt at scale
🚀 ShippedA feature has been released 📣 ANNOUNCEMENTAnnouncements from the GitHub Community team Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure GeneralGeneral topics and discussions that don't fit into other categories, but are related to GitHub -
You must be logged in to vote Code Scanning Showing Alerts For Submodules
BugGitHub or a GitHub feature is not working as intended Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure -
You must be logged in to vote Dependency Submission API doesn't allow arbitrary package URL
EnhancementtypesAn idea, feature request, or improvement to a GitHub feature Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure -
You must be logged in to vote Please display user handles in the "Add people to repo" dialog
BugGitHub or a GitHub feature is not working as intended Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure -
You must be logged in to vote What are your go-to methods to secure code in modern web apps (Node.js / React stack)?
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage -
What are your go-to methods to secure code in modern web apps (Node.js / React stack)?
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure GeneralGeneral topics and discussions that don't fit into other categories, but are related to GitHub -
You must be logged in to vote Is it possible to recover an account if I don't have anything that proves it's mine
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. Account RelatedTopics related to billing, account, and GitHub support tickets -
You must be logged in to vote Read Only Access Token to a raw file from a Private repository.
Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote Missing file
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Show & TellDiscussions where community members share their projects, experiments, or accomplishments -
You must be logged in to vote Permanently removing secret keys from old commits using BFG Repo Cleaner
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote We need Gemini 2.5 Pro
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Product FeedbackShare your thoughts and suggestions on GitHub features and improvements -
You must be logged in to vote 🔍 Understanding GitHub's Bug Bounty Program: A Guide to Getting Involved
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Community Check-InUpdates & News from GitHub Community Managers -
You must be logged in to vote Security
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage -
You must be logged in to vote Secret scanning's delegated bypass controls for push protection (public beta) - feedback
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure Product FeedbackShare your thoughts and suggestions on GitHub features and improvements ChangelogA discussion post associated with a Changelog post -
You must be logged in to vote 🕵♀ Dive Into Bug Bounty: A Month of Learning, Engaging, and Earning!
📣 ANNOUNCEMENTAnnouncements from the GitHub Community team Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure -
You must be logged in to vote dependabot like a virus
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage -
You must be logged in to vote How to subscribe to security advisory?
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote Restrict release creation
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage -
You must be logged in to vote Grouping Dependabot Security Updates NPM
Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure QuestionAsk and answer questions about GitHub features and usage inactiveThis discussion has been automatically marked as inactive. This was formerly labeled stale. -
You must be logged in to vote Automatically Update Bun Dependencies with Dependabot
📣 ANNOUNCEMENTAnnouncements from the GitHub Community team DependabotAutomatically update dependencies to keep your project secure and up to date Code SecurityBuild security into your GitHub workflow with features to keep your codebase secure ChangelogA discussion post associated with a Changelog post
