Cette version de GitHub Enterprise Server ne sera plus disponible le 2026-03-17. Aucune publication de correctifs n’est effectuée, même pour les problèmes de sécurité critiques. Pour de meilleures performances, une sécurité améliorée et de nouvelles fonctionnalités, effectuez une mise à niveau vers la dernière version de GitHub Enterprise. Pour obtenir de l’aide sur la mise à niveau, contactez le support GitHub Enterprise.

Filtrage des alertes dans la vue d’ensemble de la sécurité

Recherchez les alertes de sécurité qui comptent le plus en filtrant vos données de vue d’ensemble de la sécurité.

Qui peut utiliser cette fonctionnalité ?

L’accès nécessite :

  • Vues de l’organisation : accès en écriture aux référentiels de l’organisation
  • Vues d’entreprise : propriétaires et responsables de la sécurité de l’organisation

Dans cet article

Security overview can show alerts across many repositories in your organization or enterprise. Filtering helps you focus on specific alerts based on severity, alert type, repository characteristics, and other factors.

You can combine multiple filters to narrow your results. For example, you can show only critical Dependabot alerts in public repositories owned by a specific team.

For a complete list of available filters, see Available filters for security overview.

Remarque

The information shown by security overview varies according to your access to repositories and organizations, and according to whether Advanced Security features are used by those repositories and organizations. For more information, see About security overview.

Filter methods

All security views have features to help you define filters. These provide an easy way to set up filters and understand the options available.

  • Interactive search text box. When you click in the search box and press the keyboard "Space" key, a pop-up text box shows the filter options available in that view. You can use the mouse or keyboard arrow keys to select the options you want in the text box before pressing the keyboard "Return" key to add the filter. Supported for all views.
  • Dropdown selectors and toggles. Shown at the end of the "Search text box" or in the header of the data table. As you choose the data to view, the filters shown in the search text box are updated accordingly. Supported on the alert views.
  • Advanced filters dialog. When you click the Filter button, you can use dropdown lists to select the "Qualifier," "Operator," and "Values" for each filter. Supported on the "Overview" and metric views.

Accessing security overview for your organization

  1. In the upper-right corner of GitHub, click your profile picture, then click Organizations.

  2. In the "Organizations" section, select the organization you want to look at.

  3. Under your organization name, click Security.

    Screenshot of the horizontal navigation bar for an organization. A tab, labeled with a shield icon and "Security," is outlined in dark orange.

Accessing security overview for your enterprise

  1. In the top-right corner of GitHub Enterprise Server, click your profile picture, then click Enterprise settings.
  2. Click the Security tab. The "Overview" dashboard of security overview is displayed.

Applying simple filters

  1. In security overview, select the view of your choice on the left navigation panel. For instructions about how to access security overview, see Accessing security overview for your organization or Accessing security overview for your enterprise.
  2. Click in the box adjacent to the Filter control. If there is text in the box, delete it. A popup shows available filters for the current view.
  3. Select a filter and a value for the filter.
  4. Press Enter.

Using the advanced filters dialog

The advanced filters dialog is available in "Overview" and metric views and helps you build filters.

  1. In the desired view of security overview, click Filter.
  2. In the "Advanced filters" dialog, use the dropdown lists to build your filter:
    • Qualifier: Select the filter type (for example, "Severity" or "Tool")
    • Operator: Select how to match values (for example, "is one of" and "is not one of")
    • Value: Select what to filter for (for example, "Critical" or "CodeQL")
  3. Optionally, click Add a filter to add a custom filter.
  4. Click Apply.

Combining filters

  • AND logic (default): Multiple filters show results matching all filters.

    severity:critical visibility:public

  • OR logic: Use commas between values for a single filter.

    severity:critical,high

  • NOT logic: Use a minus sign to exclude results.

    -repo:my-org/archived-repo

Common filter examples

  • Show critical alerts in public repositories:

    severity:critical visibility:public

  • Show repositories with more than N code scanning alerts:

    code-scanning-alerts:>100

  • Show alerts for a specific team's repositories:

    team:security-team

  • Show Dependabot alerts with available fixes:

    has:patch

  • Show active secrets from a specific provider:

    provider:amazon_aws validity:active