| Sep | OCT | Nov |
| 13 | ||
| 2020 | 2021 | 2022 |
COLLECTED BY
Collection: Save Page Now
Get security feedback with every git push
Scan code as it’s created. Get accurate, actionable security reviews within the developer workflow.
See security issues in your pull requests as part of your code review process. Prevent new vulnerabilities from making it onto main.
Find high-priority, exploitable security issues in your code. View your exposure across your codebases and focus on the vulnerabilities that matter.
Create custom queries to easily find and prevent variants of new security concerns. Use them alongside the 2,000+ CodeQL queries from GitHub and the community. Integrate third party scanning engines to view results from all your security tools in a single interface. Export results through a single API.
Secure your code
Read
Respond quickly to vulnerabilities in your supply chain
Understand your supply chain and how dependencies impact the security of your code.
Easily see what dependencies have changed in a pull request and stay secure.
Automatically monitor your dependencies for known vulnerabilities, and apply suggested fixes with automated pull requests.
Secure your supply chain
Read
Keep secrets out of your code
GitHub watches your repositories and notifies you of secrets issued by 45+ leading secret providers.
Read
Build on a secure foundation
Our team goes beyond industry standards to secure GitHub. And delivers features that help you do the same. Configure role-based access, auditing, and permissions to turn security best practices into better development processes.
Collaborate with the security community on GitHub and with the Open Source Security Foundation (OpenSSF)
XML external entity (XXE) processing
CVE-2019-10782 • Jonathan Leitschuh
Incorrect use of X509_check_host
CVE-2020-9432 • lua-openssl • Agustin Gianni
Prototype pollution in mpath package
CVE-2018-16490 • Cristian-Alexandru Staicu
Report security issues, share security knowledge and grow with the community. Contribute to open source code scanning queries written by GitHub and leading security researchers.
Meet the GitHub Security Lab
Read
GitHub on Twitter
●
GitHub on Facebook
●
GitHub on YouTube
●
GitHub on LinkedIn
●
GitHub’s organization on GitHub
●© 2021 GitHub, Inc.
●Terms
●Privacy
●Site Map
●What is Git?
You can’t perform that action at this time.
You signed in with another tab or window. Reload to refresh your session.
You signed out in another tab or window. Reload to refresh your session.
