| Security and code quality documentation |
Security and code quality |
Build security and code quality into your {% data variables.product.github %} workflow to secure your software supply chain, prevent data leaks, and automatically find and fix vulnerabilities and code health issues in your codebase. |
|
| overview |
generate_secret_risk_assessment_report_for_free |
| {% ifversion ghes %}/code-security/getting-started/github-security-features{% endif %} |
{% ifversion secret-risk-assessment %}/code-security/securing-your-organization/understanding-your-organizations-exposure-to-leaked-secrets/assess-your-secret-risk{% endif %} |
|
| startHere |
guideCards |
popular |
| {% ifversion fpt or ghec %}/code-security/getting-started/github-security-features{% endif %} |
| /code-security/getting-started/quickstart-for-securing-your-repository |
| {% ifversion ghes %}/code-security/secret-scanning/working-with-secret-scanning-and-push-protection{% endif %} |
| /code-security/getting-started/dependabot-quickstart-guide |
| /code-security/code-scanning/enabling-code-scanning/configuring-default-setup-for-code-scanning |
|
| /code-security/trialing-github-advanced-security/planning-a-trial-of-ghas |
| /code-security/secret-scanning/enabling-secret-scanning-features |
| /code-security/code-scanning/enabling-code-scanning/configuring-default-setup-for-code-scanning |
| /code-security/dependabot/dependabot-security-updates/configuring-dependabot-security-updates |
| /code-security/dependabot/dependabot-version-updates/configuring-dependabot-version-updates |
|
| {% ifversion secret-risk-assessment %}/code-security/securing-your-organization/understanding-your-organizations-exposure-to-leaked-secrets/about-secret-risk-assessment{% endif %} |
| {% ifversion ghes %}/admin/release-notes{% endif %} |
| /code-security/security-advisories/guidance-on-reporting-and-writing-information-about-vulnerabilities/about-coordinated-disclosure-of-security-vulnerabilities |
| /code-security/getting-started/best-practices-for-preventing-data-leaks-in-your-organization |
| /code-security/securing-your-organization/fixing-security-alerts-at-scale/best-practice-fix-alerts-at-scale |
| /code-security/dependabot/maintain-dependencies/best-practices-for-maintaining-dependencies |
|
|
| label |
versions |
| security-and-compliance |
|
|
product-landing |
|
| Repositories |
| Dependencies |
| Vulnerabilities |
|
| /getting-started |
| /trialing-github-advanced-security |
| /code-quality |
| /adopting-github-advanced-security-at-scale |
| /securing-your-organization |
| /secret-scanning |
| /code-scanning |
| /codeql-cli |
| /codeql-for-vs-code |
| /security-advisories |
| /supply-chain-security |
| /dependabot |
| /security-overview |
|
