Вход на сайт

Просмотр новости

Найдите то, что Вас интересует

Clearer names for secret scanning detector types

Дата публикации: 10-07-2026 20:06:10

To make secret scanning easier to understand, we’re updating the names we use for our detector types to better reflect how each one finds secrets. This is a naming change…
The post Clearer names for secret scanning detector types appeared first on The GitHub Blog.


Основное содержимое страницы с новостью.

To make secret scanning easier to understand, we’re updating the names we use for our detector types to better reflect how each one finds secrets. This is a naming change only; detection behavior is exactly the same.

Before Now
Non-provider patterns Generic patterns
Copilot secret scanning AI-detected secrets

All existing product documentation links continue to work. We’ve added redirects and updated the terminology across our documentation. There are no changes to webhook events, audit log events, or the REST API.

There are two kinds of secrets we detect:

  • Provider secrets are issued by a specific service (e.g., an AWS key, a Stripe token).
  • Generic secrets aren’t tied to any provider (e.g., private keys, connection strings, passwords).

There are two ways we detect them:

  • Patterns use deterministic detection (i.e., regular expressions combined with additional checks like entropy analysis). Patterns reliably catch secrets with a recognizable structure and include both provider patterns for provider secrets, as well as generic patterns like private keys and connection strings.
  • AI-detected secrets use AI to catch generic secrets that don’t follow a predictable format (e.g., passwords). The model reads the surrounding code to find harder-to-detect unstructured secrets.

Learn more

Learn more about secret scanning and see the full list of supported secrets in our documentation. Let us know what you think in the community discussion.

Схожие новости

#Наименование новостиТональностьИнформативностьДата публикации
1Innersource security advisories are generally available0508-07-2026
2Organization-level targeting for GitHub Code Quality5709-07-2026
3New pull requests dashboard is now generally available5709-07-2026
4CodeQL 2.26.0 adds Kotlin 2.4.0 support and AI prompt injection detection5710-07-2026
5Ask Copilot for a repository overview0509-07-2026
6GitHub Mobile: Improved filters and sorting for Copilot sessions0510-07-2026
7Per-user states for multi-user budgets in the REST API5710-07-2026
85 Best Kubernetes Security Tools in 2026: Full Breakdown0506-05-2026
9Поддельный Go DNS Scanner обнаружили в 222 GitHub-репозиториях с вредоносным ПО0711-07-2026
10The Hidden Cost of AI Security Scanners0720-05-2026

Классификация: Пресс-релизы. Схожих патентов: 0. Схожих новостей: 10. Тональность: 0. Информативность: 3. Источник: github.blog.