You are currently viewing GitHub Expands Secret Scanning

GitHub Expands Secret Scanning

GitHub is rolling out free secret scanning to all public repositories. Previously, the service had been available only to organizations that use GitHub Enterprise Cloud with a GitHub Advanced Security license. The feature should be available to all users by the end of January 2023. After the feature is enabled, GitHub will automatically scan repositories for more than 200 token formats and notify developers when leaked secrets are detected. In a separate story, GitHub will require all users to enable two-factor authentication by the end of 2023. The requirement will begin rolling out in March. Ref https://docs.github.com/en/enterprise-cloud@latest/code-security/secret-scanning/about-secret-scanning