GitHub Community

GitHub Community Discussions Billing & Subscription Guide 💳
General shinybrightstar
GHAS Code Security Series - Part 1: Setting Up Organization-Wide Code Scanning
Discover vishaljsoni
🌌 GitHub Universe 2025 Community Release Recap
Announcements ebndev
🚢 Upcoming Webinar: Recapping Universe 2025 releases
Announcements queenofcorgis

Discussions

You must be logged in to vote

Use other paramters to downgrade or upgrade the severity for a dependabot vulnerability
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
allan-cw asked Dec 2, 2022 in Code Security · Unanswered

1
You must be logged in to vote

JavaScript action: generate ./dist during release build?
Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage inactive This discussion has been automatically marked as inactive. This was formerly labeled stale.
falti asked Dec 2, 2022 in Code Security · Closed · Unanswered

2
You must be logged in to vote

Code Scanning Coverage - Filtering
Code Scanning Code scanning: our code analysis features, powered by the CodeQL engine Code Security Build security into your GitHub workflow with features to keep your codebase secure
john-yacuta-submittable asked Apr 3, 2023 in Code Security · Unanswered

2
You must be logged in to vote

Have a question about web PR with GPG
Code Security Build security into your GitHub workflow with features to keep your codebase secure General General topics and discussions that don't fit into other categories, but are related to GitHub
digger-yu asked Apr 18, 2023 in Code Security · Unanswered

0
You must be logged in to vote

How to allow Dependabot to reach private repo within my org for RubyGems updates?
Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage
brooksClo19 asked Mar 30, 2023 in Code Security · Closed · Answered

2
You must be logged in to vote

Discrepancy in files updated by dependabot version updates
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage inactive This discussion has been automatically marked as inactive. This was formerly labeled stale.
olivier-martin-sf asked Mar 24, 2023 in Code Security · Closed · Unanswered

1
You must be logged in to vote

2FA with multiple admin accounts/users
Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage inactive This discussion has been automatically marked as inactive. This was formerly labeled stale.
remaincosi asked Apr 6, 2023 in Code Security · Closed · Unanswered

2
You must be logged in to vote

Dependabot PR prefixes
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage inactive This discussion has been automatically marked as inactive. This was formerly labeled stale.
bradical asked Apr 14, 2023 in Code Security · Closed · Unanswered

6
You must be logged in to vote

hyper and h2 vulnerable to denial of service High severity GitHub Reviewed Published 8 hours ago to the GitHub Advisory Database • Updated 2 hours ago [Vulnerability details](https://github.com/advisories/GHSA-f8vr-r385-rh5r)
Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage inactive This discussion has been automatically marked as inactive. This was formerly labeled stale.
daukantas asked Apr 12, 2023 in Code Security · Closed · Unanswered

2
You must be logged in to vote

Codescaning for R Language
Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage inactive This discussion has been automatically marked as inactive. This was formerly labeled stale.
Yashwanth-kumar-s asked Apr 12, 2023 in Code Security · Closed · Unanswered

5
You must be logged in to vote

ownership of the code
Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage inactive This discussion has been automatically marked as inactive. This was formerly labeled stale.
vvd-vvd asked Mar 27, 2023 in Code Security · Closed · Unanswered

3
You must be logged in to vote

What are some best practices for securing GitHub Actions workflows?
Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage
MoulinLouis asked Jun 12, 2023 in Code Security · Closed · Unanswered

1
You must be logged in to vote

How can I detect and prevent vulnerable dependencies in my GitHub repositories?
Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage
MoulinLouis asked Jun 12, 2023 in Code Security · Closed · Unanswered

0
You must be logged in to vote

What are some best practices for securing GitHub Actions workflows?
Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage
Eliwena asked Jun 12, 2023 in Code Security · Closed · Unanswered

0
You must be logged in to vote

How can I detect and prevent vulnerable dependencies in my GitHub repositories?
Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage
Eliwena asked Jun 12, 2023 in Code Security · Closed · Unanswered

0
You must be logged in to vote

Dependabot issues, overriding sub sub dependency versions
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage inactive This discussion has been automatically marked as inactive. This was formerly labeled stale.
krondorl asked Jun 3, 2023 in Code Security · Closed · Unanswered

1
You must be logged in to vote

dell
Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage
rustamisgandarov asked Jun 10, 2023 in Code Security · Closed · Unanswered

2
You must be logged in to vote

How to implement code security when managing the Git Repo on workflow?
Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage
fourfor4 asked Jun 16, 2023 in Code Security · Closed · Unanswered

1
You must be logged in to vote

Is there a way to disable filters within the source code?
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
masa-iwasaki asked Jun 26, 2023 in Code Security · Unanswered

0
You must be logged in to vote

GitHub bug bounty website typo.
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
Warrobot10 asked Jun 23, 2023 in Code Security · Unanswered

0
You must be logged in to vote

Getting unverified signature even if git says the signature is ok, uploaded and with the same email and I used to get verified
Bug GitHub or a GitHub feature is not working as intended Code Security Build security into your GitHub workflow with features to keep your codebase secure
gurghet asked Jul 3, 2023 in Code Security · Closed · Answered

9
You must be logged in to vote

Github security tab filtering - Alert? Category ?
Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage
RonShvarz asked Jul 16, 2023 in Code Security · Closed · Unanswered

1
You must be logged in to vote

please help me
Bug GitHub or a GitHub feature is not working as intended Code Security Build security into your GitHub workflow with features to keep your codebase secure
Coco-melons asked Jul 18, 2023 in Code Security · Unanswered

2
You must be logged in to vote

Get/Update collaborators in Security Advisory
Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage inactive This discussion has been automatically marked as inactive. This was formerly labeled stale.
Wadeck asked Jun 26, 2023 in Code Security · Closed · Unanswered

1
You must be logged in to vote

Secret Scanning Alerts API - 404
Secret Scanning Detect and prevent the exposure of sensitive information in your code Code Security Build security into your GitHub workflow with features to keep your codebase secure Question Ask and answer questions about GitHub features and usage
shahithyakumar asked Jul 5, 2023 in Code Security · Closed · Unanswered

2