# Feature available only on dotcom security_advisories: title: 'Исправление уязвимости системы безопасности и раскрытие сведений о ней' description: 'Использование рекомендаций по безопасности репозитория для не выпущенного официально исправления уязвимости и получения CVE.' featured_track: '{% ifversion fpt or ghec %}true{% else %}false{% endif %}' guides: - /code-security/repository-security-advisories/about-coordinated-disclosure-of-security-vulnerabilities - /code-security/repository-security-advisories/creating-a-repository-security-advisory - /code-security/repository-security-advisories/adding-a-collaborator-to-a-repository-security-advisory - /code-security/repository-security-advisories/collaborating-in-a-temporary-private-fork-to-resolve-a-repository-security-vulnerability - /code-security/repository-security-advisories/publishing-a-repository-security-advisory - /code-security/repository-security-advisories/editing-a-repository-security-advisory - /code-security/repository-security-advisories/withdrawing-a-repository-security-advisory - /code-security/repository-security-advisories/removing-a-collaborator-from-a-repository-security-advisory # Feature available on dotcom and GHES 3.3+, so articles available on GHAE and earlier GHES hidden to hide the learning track dependabot_alerts: title: 'Получение уведомлений о небезопасных зависимостях' description: 'Настройте Dependabot для оповещения о новых уязвимостях{% ifversion GH-advisory-db-supports-malware %} или вредоносных программах{% endif %} в своих зависимостях.' guides: - /code-security/dependabot/dependabot-alerts/about-dependabot-alerts - '{% ifversion fpt or ghec or ghes > 3.2 %}/github/administering-a-repository/managing-repository-settings/managing-security-and-analysis-settings-for-your-repository{% endif %}' - /code-security/dependabot/dependabot-alerts/viewing-and-updating-dependabot-alerts - /code-security/dependabot/dependabot-alerts/configuring-notifications-for-dependabot-alerts - /code-security/dependabot/working-with-dependabot/managing-pull-requests-for-dependency-updates - /code-security/dependabot/working-with-dependabot/troubleshooting-the-detection-of-vulnerable-dependencies - /code-security/dependabot/working-with-dependabot/troubleshooting-dependabot-errors # Feature available on dotcom and GHES 3.3+, so articles available on GHAE and earlier GHES hidden to hide the learning track dependabot_security_updates: title: 'Получение запросов на вытягивание для обновления уязвимых зависимостей' description: 'Настройте Dependabot для создания запросов на вытягивание при получении отчета о новых уязвимостях.' guides: - /code-security/dependabot/dependabot-security-updates/about-dependabot-security-updates - /code-security/dependabot/dependabot-security-updates/configuring-dependabot-security-updates - '{% ifversion fpt or ghec or ghes > 3.2 %}/code-security/supply-chain-security/managing-vulnerabilities-in-your-projects-dependencies/configuring-notifications-for-vulnerable-dependencies{% endif %}' - '{% ifversion fpt or ghec or ghes > 3.2 %}/github/administering-a-repository/managing-repository-settings/managing-security-and-analysis-settings-for-your-repository{% endif %}' - /code-security/dependabot/working-with-dependabot/managing-pull-requests-for-dependency-updates - '{% ifversion fpt or ghec or ghes > 3.2 %}/code-security/supply-chain-security/managing-vulnerabilities-in-your-projects-dependencies/troubleshooting-the-detection-of-vulnerable-dependencies{% endif %}' # Feature available only on dotcom and GHES 3.3+ dependency_version_updates: title: 'Не забывайте обновлять свои зависимости' description: 'Используйте Dependabot, чтобы проверить наличие новых выпусков и создать запросы на вытягивание для обновления зависимостей.' guides: - /code-security/dependabot/dependabot-version-updates/about-dependabot-version-updates - /code-security/dependabot/dependabot-version-updates/configuring-dependabot-version-updates - /code-security/dependabot/dependabot-version-updates/customizing-dependency-updates - /code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file - /code-security/dependabot/working-with-dependabot/keeping-your-actions-up-to-date-with-dependabot - /code-security/dependabot/working-with-dependabot/automating-dependabot-with-github-actions - /code-security/dependabot/dependabot-version-updates/listing-dependencies-configured-for-version-updates - /code-security/dependabot/working-with-dependabot/managing-encrypted-secrets-for-dependabot - /code-security/dependabot/working-with-dependabot/managing-pull-requests-for-dependency-updates - /code-security/dependabot/working-with-dependabot/troubleshooting-dependabot-errors # Feature available in GHEC, GHES 3.0 up, and GHAE. Feature limited on FPT so hidden there. secret_scanning: title: 'Сканирование на наличие секретов' description: 'Настройте сканирование на наличие секретов для защиты от случайного возврата токенов, паролей и других секретов в репозиторий.' guides: - '{% ifversion not fpt %}/code-security/secret-scanning/about-secret-scanning{% endif %}' - '{% ifversion not fpt %}/code-security/secret-scanning/configuring-secret-scanning-for-your-repositories{% endif %}' - '{% ifversion not fpt %}/code-security/secret-scanning/defining-custom-patterns-for-secret-scanning{% endif %}' - '{% ifversion not fpt %}/code-security/secret-scanning/managing-alerts-from-secret-scanning{% endif %}' - '{% ifversion not fpt %}/code-security/secret-scanning/secret-scanning-patterns{% endif %}' - '{% ifversion secret-scanning-push-protection %}/code-security/secret-scanning/protecting-pushes-with-secret-scanning{% endif %}' - '{% ifversion secret-scanning-push-protection %}/code-security/secret-scanning/pushing-a-branch-blocked-by-push-protection{% endif %}' # Security overview feature available in GHEC and GHES 3.2+, so other articles hidden to hide the learning path in other versions security_alerts: title: 'Изучение оповещений системы безопасности и управление ими' description: 'Узнайте, где найти и разрешить оповещения системы безопасности.' guides: - '{% ifversion ghec or ghes > 3.1 %}/code-security/security-overview/about-the-security-overview {% endif %}' - '{% ifversion ghec or ghes > 3.1 %}/code-security/security-overview/viewing-the-security-overview {% endif %}' - '{% ifversion ghec or ghes > 3.1 %}/code-security/secret-scanning/managing-alerts-from-secret-scanning {% endif %}' - '{% ifversion ghec or ghes > 3.1 %}/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/managing-code-scanning-alerts-for-your-repository{% endif %}' - '{% ifversion ghec or ghes > 3.1 %}/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/triaging-code-scanning-alerts-in-pull-requests{% endif %}' - '{% ifversion ghec or ghes > 3.1 %}/code-security/supply-chain-security/managing-vulnerabilities-in-your-projects-dependencies/viewing-and-updating-vulnerable-dependencies-in-your-repository{% endif %}' # Feature available in all versions from GHES 2.22 up code_security_actions: title: 'Сканирование кода с помощью GitHub Actions' description: 'Проверьте свою ветвь по умолчанию и каждый запрос на вытягивание, чтобы защитить репозиторий от уязвимостей и ошибок.' featured_track: '{% ifversion ghae or ghes %}true{% else %}false{% endif %}' guides: - /code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/about-code-scanning - /code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/setting-up-code-scanning-for-a-repository - /code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning - /code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-the-codeql-workflow-for-compiled-languages - /code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/running-codeql-code-scanning-in-a-container - /code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/troubleshooting-the-codeql-workflow # Feature available in all versions from GHES 2.22 up code_security_integration: title: 'Интеграция со сканированием кода' description: 'Передайте результаты анализа кода из сторонних систем в GitHub с помощью SARIF.' guides: - /code-security/code-scanning/integrating-with-code-scanning/about-integration-with-code-scanning - /code-security/code-scanning/integrating-with-code-scanning/uploading-a-sarif-file-to-github - /code-security/code-scanning/integrating-with-code-scanning/sarif-support-for-code-scanning - /rest/reference/code-scanning # Feature available in all versions from GHES 2.22 up code_security_ci: title: 'Сканирование кода CodeQL в CI' description: 'Настройте CodeQL в существующей CI и передайте результаты в сканирование кода GitHub.' guides: - /code-security/code-scanning/using-codeql-code-scanning-with-your-existing-ci-system/about-codeql-code-scanning-in-your-ci-system - /code-security/code-scanning/using-codeql-code-scanning-with-your-existing-ci-system/installing-codeql-cli-in-your-ci-system - /code-security/code-scanning/using-codeql-code-scanning-with-your-existing-ci-system/configuring-codeql-cli-in-your-ci-system - /code-security/code-scanning/using-codeql-code-scanning-with-your-existing-ci-system/migrating-from-the-codeql-runner-to-codeql-cli - /code-security/code-scanning/using-codeql-code-scanning-with-your-existing-ci-system/troubleshooting-codeql-runner-in-your-ci-system # Feature available in all versions end_to_end_supply_chain: title: 'Сквозная цепочка поставок' description: 'Что важно учесть для защиты учетных записей пользователей, кода и процесса сборки.' guides: - /code-security/supply-chain-security/end-to-end-supply-chain/end-to-end-supply-chain-overview - /code-security/supply-chain-security/end-to-end-supply-chain/securing-accounts - /code-security/supply-chain-security/end-to-end-supply-chain/securing-code - /code-security/supply-chain-security/end-to-end-supply-chain/securing-builds