This version of GitHub Enterprise Server will be discontinued on 2026-03-17. No patch releases will be made, even for critical security issues. For better performance, improved security, and new features, upgrade to the latest version of GitHub Enterprise Server. For help with the upgrade, contact GitHub Enterprise support.
Concepts for security and code quality
Learn core concepts for GitHub's security and code quality features.
- Concepts for secret security
- About secret scanning
- About push protection
- About secret scanning alerts
- Custom patterns
- About delegated bypass for push protection
- About bypass requests for push protection
- GitHub secret types
- Secret scanning push protection metrics
- Push protection from the command line
- Working with push protection from the REST API
- Concepts for code scanning
- Supply chain security
- About supply chain security
- Best practices for maintaining dependencies
- About the dependency graph
- How the dependency graph recognizes dependencies
- About dependency review
- About Dependabot alerts
- About Dependabot security updates
- About Dependabot version updates
- About Dependabot pull requests
- About the dependabot.yml file
- About Dependabot auto-triage rules
- Dependabot job logs
- Concepts for vulnerability reporting and management
- Concepts for security at scale