jprdonnelly/docs
1
0
Fork 0
mirror of synced 2025-12-19 18:10:59 -05:00
Code Issues Projects Releases Wiki Activity

Deprecation of advisories on private repos #12401 (#50337)

Browse Source 
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
Co-authored-by: Caro Galvin <carogalvin@github.com>
This commit is contained in:
Anne-Marie
2024-05-15 18:44:08 +01:00
committed by GitHub
parent b47d2b74b3
commit a4a55a8d9a
13 changed files with 20 additions and 48 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
content/code-security/getting-started/github-security-features.md
View File

@@ -25,14 +25,6 @@ The {% data variables.product.prodname_advisory_database %} contains a curated l
Make it easy for your users to confidentially report security vulnerabilities they've found in your repository. For more information, see "[AUTOTITLE](/code-security/getting-started/adding-a-security-policy-to-your-repository)."
{% ifversion fpt or ghec %}
### Security advisories
Privately discuss and fix security vulnerabilities in your repository's code. You can then publish a security advisory to alert your community to the vulnerability and encourage community members to upgrade. For more information, see "[AUTOTITLE](/code-security/security-advisories/working-with-repository-security-advisories/about-repository-security-advisories)."
{% endif %}
### {% data variables.product.prodname_dependabot_alerts %} and security updates
View alerts about dependencies that are known to contain security vulnerabilities, and choose whether to have pull requests generated automatically to update these dependencies. For more information, see "[AUTOTITLE](/code-security/dependabot/dependabot-alerts/about-dependabot-alerts)"
@@ -75,6 +67,14 @@ Security overview shows which security features are enabled for the repository,
## Available for free public repositories
{% ifversion fpt or ghec %}
### Security advisories
Privately discuss and fix security vulnerabilities in your repository's code. You can then publish a security advisory to alert your community to the vulnerability and encourage community members to upgrade. For more information, see "[AUTOTITLE](/code-security/security-advisories/working-with-repository-security-advisories/about-repository-security-advisories)."
{% endif %}
### {% data variables.secret-scanning.user_alerts_caps %}
Automatically detect tokens or credentials that have been checked into a {% ifversion ghec %}user-owned {% endif %}public repository. You can view alerts for any secrets that {% data variables.product.company_short %} finds in your code, in the **Security** tab of the repository, so that you know which tokens or credentials to treat as compromised. For more information, see "[AUTOTITLE](/code-security/secret-scanning/about-secret-scanning#about-secret-scanning-alerts-for-users)."