Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Secret scanning push protection for gists #969

Open
github-product-roadmap opened this issue May 29, 2024 · 0 comments
Open

Secret scanning push protection for gists #969

github-product-roadmap opened this issue May 29, 2024 · 0 comments
Labels
all Product SKU: All cloud Available on Cloud ga Feature phase: Generally available secret scanning Feature: Github Secret Scanning

Comments

@github-product-roadmap
Copy link
Collaborator

Summary

Secret scanning's push protection will support gists, preventing developers from accidentally leaking tokens in secret and public gists.

Intended Outcome

Gists remain an easy way for developers to save and share snippets of code. They can be a source of secret leaks. With push protection on gists, developers will be warned when they are about to leak a secret in a gist.

How will it work?

When a developer creates or updates a secret or public gist, secret scanning will check to see if the content includes a secret. If it does, the developer will we blocked and have the option to either remove the secret or bypass the block. Developers will not need to select a reason for bypassing. No secret scanning alerts will be created for secrets found in gists.

@github github locked and limited conversation to collaborators May 29, 2024
@github-product-roadmap github-product-roadmap added all Product SKU: All cloud Available on Cloud ga Feature phase: Generally available secret scanning Feature: Github Secret Scanning labels May 29, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
all Product SKU: All cloud Available on Cloud ga Feature phase: Generally available secret scanning Feature: Github Secret Scanning
Projects
Development

No branches or pull requests

1 participant