为非提供程序模式启用机密扫描

你可以在 存储库和组织级别启用 secret scanning,以检测更多潜在机密。

谁可以使用此功能?

具有管理员角色的存储库所有者、组织所有者、安全管理员和用户

非提供者模式扫描可用于以下存储库类型:

在本文中

Enabling scanning for non-provider patterns

You can enable scanning for non-provider patterns. Non-provider patterns correspond to secrets such as private keys.

For more information about non-provider patterns, see "Supported secret scanning patterns."

Enabling detection of non-provider patterns for a repository

  1. On GitHub, navigate to the main page of the repository.

  2. Under your repository name, click Settings. If you cannot see the "Settings" tab, select the dropdown menu, then click Settings.

    Screenshot of a repository header showing the tabs. The "Settings" tab is highlighted by a dark orange outline.

  3. In the "Security" section of the sidebar, click Code security.

  4. Under "Secret scanning", to the right of "Non-provider patterns", click Enable.

Enabling detection of non-provider patterns for an organization

You can enable scanning for non-provider patterns at the organization level by applying a custom security configuration. For more information, see Creating a custom security configuration.

Further reading