Code security guides
了解 GitHub 可以帮助您提高代码安全性的不同方式。
- 1概述
关于安全漏洞的协调披露
漏洞披露是安全报告者与仓库维护者之间的协调工作。 - 2操作指南
创建存储库安全公告
您可以创建安全通告草稿,以私下讨论和修复开源项目中的安全漏洞。 - 3操作指南
将协作者添加到存储库安全通告
您可以添加其他用户或团队与您协作处理安全通告。 - 4操作指南
在临时专用分支中协作以解决存储库安全漏洞
您可以创建临时私有复刻,以私下协作修复仓库中的安全漏洞。 - 5操作指南
发布存储库安全公告
您可以发布安全通告,向社区提醒项目中的安全漏洞。 - 6操作指南
编辑存储库安全通告
如果需要更新详细信息或更正错误,可以编辑存储库安全公告的元数据和说明。 - 7操作指南
撤销存储库安全通告
你可以撤销已发布的存储库安全公告。 - 8操作指南
删除存储库安全公告中的协作者
协作者从存储库安全公告中删除后,将失去对安全公告的讨论和元数据的读取和写入权限。
All Code security guides
找到了 68 个指南
将安全策略添加到存储库
操作指南您可以为仓库添加安全政策,说明如何报告项目中的安全漏洞。
- Security policies
- Vulnerabilities
- Repositories
- Health
GitHub security features
概述An overview of GitHub security features.
- Repositories
- Dependencies
- Vulnerabilities
- Advanced Security
保护你的组织
操作指南您可以使用许多 GitHub 功能来帮助保护组织的安全。
- Organizations
- Dependencies
- Vulnerabilities
- Advanced Security
Securing your repository
操作指南You can use a number of GitHub features to help keep your repository secure.
- Repositories
- Dependencies
- Vulnerabilities
- Advanced Security
About secret scanning
概述GitHub scans repositories for known types of secrets, to prevent fraudulent use of secrets that were committed accidentally.
- Secret scanning
- Advanced Security
Configuring secret scanning for your repositories
操作指南You can configure how GitHub scans your repositories for secrets that match advanced security patterns.
- Secret scanning
- Advanced Security
- Repositories
Defining custom patterns for secret scanning
操作指南You can extend secret scanning for advanced security to detect secrets beyond the default patterns.
- Advanced Security
- Secret scanning
Managing alerts from secret scanning
操作指南You can view and close alerts for secrets checked in to your repository.
- Secret scanning
- Advanced Security
- Alerts
- Repositories
Protecting pushes with secret scanning
操作指南You can use secret scanning to prevent supported secrets from being pushed into your organization or repository by enabling push protection.
- Secret scanning
- Advanced Security
- Alerts
- Repositories