Code security guides
了解 GitHub AE 可以帮助您提高代码安全性的不同方式。
- 1概述
关于代码扫描
您可以使用 code scanning 在 GitHub 上查找项目中的安全漏洞和代码错误。 - 2操作指南
Setting up code scanning for a repository
You can set up code scanning by adding a workflow to your repository. - 3操作指南
Configuring code scanning
You can configure how GitHub scans the code in your project for vulnerabilities and errors. - 4操作指南
为编译的语言配置 CodeQL 工作流
您可以配置 GitHub 如何使用 CodeQL analysis workflow 扫描用编译语言编写的代码以查找漏洞和错误。 - 5操作指南
Running CodeQL code scanning in a container
You can run code scanning in a container by ensuring that all processes run in the same container. - 6操作指南
Troubleshooting the CodeQL workflow
If you're having problems with code scanning, you can troubleshoot by using these tips for resolving issues.
All Code security guides
找到了 40 个指南
将安全策略添加到存储库
操作指南您可以为仓库添加安全政策,说明如何报告项目中的安全漏洞。
- Security policies
- Vulnerabilities
- Repositories
- Health
GitHub security features
概述An overview of GitHub security features.
- Repositories
- Dependencies
- Vulnerabilities
- Advanced Security
保护你的组织
操作指南您可以使用许多 GitHub 功能来帮助保护组织的安全。
- Organizations
- Dependencies
- Vulnerabilities
- Advanced Security
Securing your repository
操作指南You can use a number of GitHub features to help keep your repository secure.
- Repositories
- Dependencies
- Vulnerabilities
- Advanced Security
About secret scanning
概述GitHub AE scans repositories for known types of secrets, to prevent fraudulent use of secrets that were committed accidentally.
- Secret scanning
- Advanced Security
为存储库配置机密扫描
操作指南您可以配置 GitHub 如何扫描存储库以查找与高级安全模式匹配的机密。
- Secret scanning
- Advanced Security
- Repositories
Defining custom patterns for secret scanning
操作指南You can extend secret scanning to detect secrets beyond the default patterns.
- Advanced Security
- Secret scanning
Managing alerts from secret scanning
操作指南You can view and close alerts for secrets checked in to your repository.
- Secret scanning
- Advanced Security
- Alerts
- Repositories
机密扫描模式
参考支持的机密列表和 GitHub 与之合作的合作伙伴,以防止欺诈性使用意外提交的机密。
- Secret scanning
- Advanced Security