GitHub Community

GitHub Community Discussions Billing & Subscription Guide 💳
General shinybrightstar
GHAS Code Security Series - Part 1: Setting Up Organization-Wide Code Scanning
Discover vishaljsoni
🌌 GitHub Universe 2025 Community Release Recap
Announcements ebndev
🚢 Upcoming Webinar: Recapping Universe 2025 releases
Announcements queenofcorgis

Sort by: Latest activity

Discussions

You must be logged in to vote

Dependabot security update can't connect to private registry magento repository
Bug GitHub or a GitHub feature is not working as intended Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure
Flowster asked Feb 23, 2024 in Code Security · Unanswered

1
You must be logged in to vote

Huge uptick in bots creating bogus PRs. Insufficient moderation tools.
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
bitbound asked Feb 24, 2024 in Code Security · Unanswered

0
You must be logged in to vote

I have configured code ql scanning in github thru yaml. Diagnostic logs are coming.. But in results no alerts coming. I tried to pass secrets, hardcoded values thru python files.. Its not generating alerts
Bug GitHub or a GitHub feature is not working as intended Code Security Build security into your GitHub workflow with features to keep your codebase secure
sowmyamol asked Feb 23, 2024 in Code Security · Unanswered

0
You must be logged in to vote

🆕 Dependency Review Action (Beta) Feedback - [Update: Released]
📣 ANNOUNCEMENT Announcements from the GitHub Community team Beta A feature that is in preview per: https://github.com/orgs/community/discussions/141918 Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
courtneycl asked Apr 6, 2022 in Code Security · Closed · Answered

19
You must be logged in to vote

Wow! Being Invited by GitHub Recruitment Team in the comments of other's personal blog!
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
sify21 asked Feb 21, 2024 in Code Security · Closed · Answered

1
You must be logged in to vote

sonarqube or snyk
Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage
krabelize asked Feb 21, 2024 in Code Security · Closed · Answered

1
You must be logged in to vote

Skype
Bug GitHub or a GitHub feature is not working as intended Code Security Build security into your GitHub workflow with features to keep your codebase secure
caveman927 asked Feb 19, 2024 in Code Security · Closed · Unanswered

2
You must be logged in to vote

Remove secrets from Past Pull Requests
Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage
priyanka-s2 asked Feb 19, 2024 in Code Security · Closed · Unanswered

0
You must be logged in to vote

Consider YAML 1.2 for dependabot configuration
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
erickgskovik asked Feb 19, 2024 in Code Security · Unanswered

0
You must be logged in to vote

Dependabot alerts should support conventional major version tags with GitHub Actions
Bug GitHub or a GitHub feature is not working as intended Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure
bigdaz asked May 5, 2023 in Code Security · Answered

1
You must be logged in to vote

Dependency review is unexpected and undesired
Pull Requests Propose, review, and discuss changes to a repository's codebase Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
jsoref asked Feb 9, 2024 in Pull Requests · Unanswered

5
You must be logged in to vote

Completely excluding a particular package ecosystem or manifest from dependency graph
Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage
grishka asked Feb 10, 2024 in Code Security · Answered

1
You must be logged in to vote

GitHub signs all commits by all users with the same key
Code Security Build security into your GitHub workflow with features to keep your codebase secure
vngzs asked Feb 7, 2024 in Code Security · Unanswered

0
You must be logged in to vote

Github improperly rotated away from hosted GPG signing key to 968479A1AFF927E37D1A566BB5690EEEBB952194
Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage
PastaPastaPasta asked Jan 19, 2024 in New to GitHub · Unanswered

5
You must be logged in to vote

snyk vs CVE
Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage
alex-at-cascade asked Jan 29, 2024 in Code Security · Answered

2
You must be logged in to vote

Last scan is misleading/confusing
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
jsoref asked Jan 26, 2024 in Code Security · Unanswered

0
You must be logged in to vote

Dependabot fails to open PRs after 15 minutes
Bug GitHub or a GitHub feature is not working as intended Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure
basil asked Jan 25, 2024 in Code Security · Unanswered

1
You must be logged in to vote

Adding collaborators in an organization repo should prioritize org members
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
IgnacioHeredia asked Jan 23, 2024 in Code Security · Unanswered

0
You must be logged in to vote

Drop the 2FA requirement
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
missionfloyd asked Oct 6, 2023 in General · Unanswered

11
You must be logged in to vote

Dependabot security scan package registry settings.
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage
LairdStreak asked Jan 9, 2024 in Code Security · Answered

7
You must be logged in to vote

Findings on bug fixes
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
KidiIT asked Dec 17, 2023 in Code Security · Unanswered

1
You must be logged in to vote

I pushed with a non-collaborator account on a private repo, and it worked
Repositories The core of version-controlled code storage Code Security Build security into your GitHub workflow with features to keep your codebase secure Universe 2023 All things related to our global developer conference, Universe 2023
GioAgu17 asked Jan 12, 2024 in Repositories · Unanswered

1
You must be logged in to vote

Best Practices for Securely Submitting Changes in a Private Project on GitHub
Code Security Build security into your GitHub workflow with features to keep your codebase secure General General topics and discussions that don't fit into other categories, but are related to GitHub
dariohsb asked Jan 11, 2024 in Code Security · Closed · Answered

1
You must be logged in to vote

Github Commit signing via ssh isn't working for me
Bug GitHub or a GitHub feature is not working as intended Code Security Build security into your GitHub workflow with features to keep your codebase secure
clarkezone asked Jan 8, 2024 in Code Security · Unanswered

0
You must be logged in to vote

needing help on authenticating when git cloning a respository?
Code Security Build security into your GitHub workflow with features to keep your codebase secure General General topics and discussions that don't fit into other categories, but are related to GitHub
drfreckleshitz asked Jan 6, 2024 in Code Security · Unanswered

1