Hallo, Entdecker! An dieser Seite wird aktiv gearbeitet, oder sie wird noch übersetzt. Die neuesten und genauesten Informationen findest Du in unserer englischsprachigen Dokumentation.

Free, Pro, & Team

All Enterprise releases

Deutsch

No results found.

Code security

Build security into your GitHub workflow with features to keep secrets and vulnerabilities out of your codebase, and to maintain your software supply chain.

Leitfäden

Repository schützen→
You can use a number of GitHub features to help keep your repository secure.
Securing your organization→
You can use a number of GitHub features to help keep your organization secure.
Einen Sicherheitshinweis erstellen→
Du kannst einen Entwurf eines Sicherheitshinweises erstellen, um privat über die Sicherheitslücke in Deinem Open-Source-Projekt zu diskutieren und sie zu beheben.

Popular

What's new

Code examples

CodeQL code scanning at Microsoft

Example code scanning workflow for the CodeQL action from the Microsoft Open Source repository.

CodeQLCode scanningGitHub Actions

Adversarial Robustness Toolbox (ART) CodeQL code scanning

Example code scanning workflow for the CodeQL action from the Trusted AI repository.

CodeQLCode scanningGitHub Actions

Microsoft security policy

Example security policy

Security policy

Electron security policy

Example security policy

Security policy

Security advisory for Rails

Security advisory published by Rails for CVE-2020-15169.

Security advisory

Enable Dependabot alerts and security updates automatically

Sample scripts for enabling Dependabot alerts and security updates across an entire organization.

DependabotAlertsSecurity updatesOrganisationScripts

Leitfäden

Configuring Dependabot security updates

You can use Dependabot security updates or manual pull requests to easily update vulnerable dependencies.

Enabling and disabling version updates

You can configure your repository so that Dependabot automatically updates the packages you use.

Setting up code scanning for a repository

You can set up code scanning by adding a workflow to your repository.

All Code security docs

Getting started with code security

Keeping secrets secure with secret scanning

Finding security vulnerabilities and errors in your code with code scanning

Automatically scanning your code for vulnerabilities and errors • 10 articles
Integrating with code scanning • 3 articles
Using CodeQL code scanning with your existing CI system • 7 articles

Managing security advisories for vulnerabilities in your project

Securing your software supply chain

Understanding your software supply chain • 3 articles
Keeping your dependencies updated automatically • 10 articles
Sicherheitslücken in den Abhängigkeiten Deines Projekts verwalten • 9 articles

Viewing security alerts for repositories in your organization

About the security overview

Help us make these docs great!

All GitHub docs are open source. See something that's wrong or unclear? Submit a pull request.

Make a contribution

Oder, learn how to contribute.

Still need help?

Ask the GitHub community

Support kontaktieren