English
Code security
Enterprise Server 3.3
English
Code security
Build security into your GitHub workflow with features to keep secrets and vulnerabilities out of your codebase, and to maintain your software supply chain.
Guides
View allSecuring your repository→
You can use a number of GitHub features to help keep your repository secure.
Securing your organization→
You can use a number of GitHub features to help keep your organization secure.
Setting up code scanning for a repository→
You can set up code scanning by adding a workflow to your repository.
Popular
Release notes→
About alerts for vulnerable dependencies→
Keeping your actions up to date with Dependabot→
Configuration options for dependency updates→
Managing encrypted secrets for Dependabot→
Troubleshooting the detection of vulnerable dependencies→
Configuring the CodeQL workflow for compiled languages→
Troubleshooting the CodeQL workflow→
Running CodeQL code scanning in a container→
All Code security docs
Finding security vulnerabilities and errors in your code with code scanning
- Automatically scanning your code for vulnerabilities and errors • 10 articles
- Integrating with code scanning • 3 articles
- Using CodeQL code scanning with your existing CI system • 7 articles
Help us make these docs great!
All GitHub docs are open source. See something that's wrong or unclear? Submit a pull request.
Make a contribution