Keeping secrets secure with secret scanning
Let GitHub do the hard work of ensuring that tokens, private keys, and other code secrets are not exposed in your repository.
Who can use this feature?
Secret scanning is available for the following repository types:
- Public repositories on GitHub.com
- Organization-owned repositories on GitHub Team or GitHub Enterprise Cloud with GitHub Secret Protection enabled
- User-owned repositories for GitHub Enterprise Cloud with Enterprise Managed Users
- Introduction to secret scanning
- Enabling secret scanning features
- Managing alerts from secret scanning
- Working with secret scanning and push protection
- Using advanced secret scanning and push protection features
- Enhance your secret detection capabilities with Copilot secret scanning
- Troubleshooting secret scanning and push protection
- Secret scanning partnership program