78a8760cfa
Co-authored-by: Sarita Iyer <66540150+saritai@users.noreply.github.com> Co-authored-by: Felicity Chapman <felicitymay@github.com> Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com> Co-authored-by: Sam Browning <106113886+sabrowning1@users.noreply.github.com> Co-authored-by: github-actions <github-actions@github.com> Co-authored-by: James Fletcher <42464962+jf205@users.noreply.github.com> Co-authored-by: Joe Clark <31087804+jc-clark@users.noreply.github.com>
59 lines
3.0 KiB
Markdown
59 lines
3.0 KiB
Markdown
---
|
|
title: Code security documentation
|
|
shortTitle: Code security
|
|
intro: 'Build security into your {% data variables.product.prodname_dotcom %} workflow with features to keep secrets and vulnerabilities out of your codebase, and to maintain your software supply chain.'
|
|
redirect_from:
|
|
- /code-security/guides
|
|
introLinks:
|
|
overview: /code-security/getting-started/github-security-features
|
|
try_ghas_for_free: '{% ifversion ghec %}/billing/managing-billing-for-github-advanced-security/setting-up-a-trial-of-github-advanced-security{% endif %}'
|
|
featuredLinks:
|
|
startHere:
|
|
- /code-security/getting-started/quickstart-for-securing-your-repository
|
|
- /code-security/getting-started/quickstart-for-securing-your-organization
|
|
- '{% ifversion fpt or ghec %}/code-security/security-advisories/working-with-repository-security-advisories/creating-a-repository-security-advisory{% endif %}'
|
|
- '{% ifversion code-scanning-without-workflow %}/code-security/code-scanning/enabling-code-scanning/configuring-default-setup-for-code-scanning{% endif %}'
|
|
- '{% ifversion ghes < 3.9 %}/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/configuring-advanced-setup-for-code-scanning{% endif %}'
|
|
guideCards:
|
|
- /code-security/dependabot/dependabot-security-updates/configuring-dependabot-security-updates
|
|
- /code-security/dependabot/dependabot-version-updates/configuring-dependabot-version-updates
|
|
- '{% ifversion code-scanning-without-workflow %}/code-security/code-scanning/enabling-code-scanning/configuring-default-setup-for-code-scanning{% endif %}'
|
|
- '{% ifversion ghes < 3.9 %}/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/configuring-advanced-setup-for-code-scanning{% endif %}'
|
|
- /code-security/supply-chain-security/end-to-end-supply-chain/end-to-end-supply-chain-overview
|
|
popular:
|
|
- '{% ifversion ghes %}/admin/release-notes{% endif %}'
|
|
- /code-security/dependabot/dependabot-alerts/about-dependabot-alerts
|
|
- /code-security/security-advisories/guidance-on-reporting-and-writing-information-about-vulnerabilities/about-coordinated-disclosure-of-security-vulnerabilities
|
|
- /code-security/dependabot/working-with-dependabot/keeping-your-actions-up-to-date-with-dependabot
|
|
- /code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file
|
|
- /code-security/dependabot/working-with-dependabot/configuring-access-to-private-registries-for-dependabot
|
|
- /code-security/dependabot/working-with-dependabot/troubleshooting-the-detection-of-vulnerable-dependencies
|
|
changelog:
|
|
label: security-and-compliance
|
|
versions:
|
|
fpt: '*'
|
|
ghec: '*'
|
|
layout: product-landing
|
|
versions:
|
|
fpt: '*'
|
|
ghes: '*'
|
|
ghec: '*'
|
|
topics:
|
|
- Repositories
|
|
- Dependencies
|
|
- Vulnerabilities
|
|
children:
|
|
- /getting-started
|
|
- /adopting-github-advanced-security-at-scale
|
|
- /securing-your-organization
|
|
- /secret-scanning
|
|
- /code-scanning
|
|
- /codeql-cli
|
|
- /codeql-for-vs-code
|
|
- /security-advisories
|
|
- /supply-chain-security
|
|
- /dependabot
|
|
- /security-overview
|
|
---
|
|
|