Secret scanning push protection for gists #969
Labels
all
Product SKU: All
cloud
Available on Cloud
ga
Feature phase: Generally available
secret scanning
Feature: Github Secret Scanning
Comments
github-product-roadmap
added
all
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Summary
Secret scanning's push protection will support gists, preventing developers from accidentally leaking tokens in secret and public gists.
Intended Outcome
Gists remain an easy way for developers to save and share snippets of code. They can be a source of secret leaks. With push protection on gists, developers will be warned when they are about to leak a secret in a gist.
How will it work?
When a developer creates or updates a secret or public gist, secret scanning will check to see if the content includes a secret. If it does, the developer will we blocked and have the option to either remove the secret or bypass the block. Developers will not need to select a reason for bypassing. No secret scanning alerts will be created for secrets found in gists.
The text was updated successfully, but these errors were encountered: