Secret scanning push protection for users by default (opt out) - [GA] #13324 (#48897)

Co-authored-by: github-actions <github-actions@github.com> Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
2025-12-22 19:34:15 -05:00 · 2024-02-29 21:29:07 +01:00
parent 63bccbb2fa
commit 79585becec
16 changed files with 143 additions and 47 deletions
--- a/content/code-security/getting-started/github-security-features.md
+++ b/content/code-security/getting-started/github-security-features.md
@@ -81,6 +81,14 @@ Security overview shows which security features are enabled for the repository,

 Automatically detect leaked secrets across all public repositories, as well as public npm packages. {% data variables.product.company_short %} informs the relevant service provider that the secret may be compromised. For details of the supported secrets and service providers, see "[AUTOTITLE](/code-security/secret-scanning/secret-scanning-patterns#supported-secrets)."

+{% ifversion secret-scanning-push-protection-for-users %}
+
+### Push protection for users
+
+Push protection for users automatically protects you from accidentally committing secrets to public repositories, regardless of whether the repository itself has {% data variables.product.prodname_secret_scanning %} enabled. Push protection for users is on by default, but you can disable the feature at any time through your personal account settings. For more information, see "[AUTOTITLE](/code-security/secret-scanning/push-protection-for-users)."
+
+{% endif %}
+
 {% endif %}

 ## Available with {% data variables.product.prodname_GH_advanced_security %}