Skip to content
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Original file line number Diff line number Diff line change
Expand Up @@ -36,7 +36,9 @@ Protect your organization's repositories and settings by implementing security b

- Encouraging your users to create strong passwords and secure them appropriately, by following {% data variables.product.prodname_dotcom %}’s recommended password guidelines. For more information, see "[AUTOTITLE](/authentication/keeping-your-account-and-data-secure/creating-a-strong-password)."

- Establishing an internal security policy in {% data variables.product.prodname_dotcom %}, so users know the appropriate steps to take and who to contact if an incident is suspected. For more information, see "[AUTOTITLE](/code-security/getting-started/adding-a-security-policy-to-your-repository)."
- Establishing an internal security policy in {% data variables.product.prodname_dotcom %}, so users know the appropriate steps to take and who to contact if an incident is suspected. For more information, see "[AUTOTITLE](/code-security/getting-started/adding-a-security-policy-to-your-repository)."{% ifversion secret-scanning-push-protection-for-users %}

- Encouraging your users to enable push protection for users so that no matter which public repository they push to, they will be protected. For more information, see "[AUTOTITLE](/code-security/secret-scanning/push-protection-for-users)."{% endif %}

For more detailed information about securing accounts, see "[AUTOTITLE](/code-security/supply-chain-security/end-to-end-supply-chain/securing-accounts)."

Expand Down
1 change: 1 addition & 0 deletions content/code-security/guides.md
Original file line number Diff line number Diff line change
Expand Up @@ -32,6 +32,7 @@ includeGuides:
- /code-security/secret-scanning/defining-custom-patterns-for-secret-scanning
- /code-security/secret-scanning/managing-alerts-from-secret-scanning
- /code-security/secret-scanning/protecting-pushes-with-secret-scanning
- /code-security/secret-scanning/push-protection-for-users
- /code-security/secret-scanning/pushing-a-branch-blocked-by-push-protection
- /code-security/secret-scanning/secret-scanning-patterns
- /code-security/secret-scanning/troubleshooting-secret-scanning
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -59,6 +59,12 @@ If your project communicates with an external service, you might use a token or

{% endif %}

{% ifversion secret-scanning-push-protection-for-users %}

{% data reusables.secret-scanning.push-protection-for-users %}

{% endif %}

{% ifversion fpt or ghec %}

## About {% data variables.secret-scanning.partner_alerts %}
Expand Down
4 changes: 2 additions & 2 deletions content/code-security/secret-scanning/index.md
Original file line number Diff line number Diff line change
Expand Up @@ -21,8 +21,8 @@ children:
- /defining-custom-patterns-for-secret-scanning
- /managing-alerts-from-secret-scanning
- /secret-scanning-patterns
- /protecting-pushes-with-secret-scanning
- /push-protection-for-repositories-and-organizations
- /push-protection-for-users
- /pushing-a-branch-blocked-by-push-protection
- /troubleshooting-secret-scanning
---

Original file line number Diff line number Diff line change
@@ -1,24 +1,25 @@
---
title: Protecting pushes with secret scanning
title: Push protection for repositories and organizations
intro: 'You can use {% data variables.product.prodname_secret_scanning %} to prevent supported secrets from being pushed into your {% ifversion secret-scanning-enterprise-level %}enterprise,{% endif %} organization{% ifversion secret-scanning-enterprise-level %},{% endif %} or repository by enabling push protection.'
product: '{% data reusables.gated-features.secret-scanning %}'
versions:
feature: secret-scanning-push-protection
redirect_from:
- /early-access/code-security/secret-scanning/protecting-pushes-with-secret-scanning
- /code-security/secret-scanning/protecting-pushes-with-secret-scanning
type: how_to
topics:
- Secret scanning
- Advanced Security
- Alerts
- Repositories
shortTitle: Enable push protection
shortTitle: Push protection for repositories
---

{% data reusables.secret-scanning.beta %}
{% data reusables.secret-scanning.enterprise-enable-secret-scanning %}

## About push protection for secrets
## About push protection for repositories and organizations

Up to now, {% data variables.product.prodname_secret_scanning %} checks for secrets _after_ a push and alerts users to exposed secrets. {% data reusables.secret-scanning.push-protection-overview %} {% ifversion secret-scanning-push-protection-custom-patterns %}{% data variables.product.prodname_secret_scanning_caps %} can also check pushes for custom patterns. For more information, see "[AUTOTITLE](/code-security/secret-scanning/defining-custom-patterns-for-secret-scanning)."{% endif %}

Expand All @@ -37,6 +38,12 @@ If you are an organization owner or security manager, you can view metrics on ho

For information on the secrets and service providers supported for push protection, see "[AUTOTITLE](/code-security/secret-scanning/secret-scanning-patterns#supported-secrets)."

{% ifversion secret-scanning-push-protection-for-users %}

{% data reusables.secret-scanning.push-protection-for-users %}

{% endif %}

## Enabling {% data variables.product.prodname_secret_scanning %} as a push protection

For you to use {% data variables.product.prodname_secret_scanning %} as a push protection in public repositories, the {% ifversion secret-scanning-enterprise-level %}enterprise,{% endif %} organization{% ifversion secret-scanning-enterprise-level %},{% endif %} or repository needs to have {% data variables.product.prodname_secret_scanning %} enabled.{% ifversion secret-scanning-push-protection-private-internal %} To use {% data variables.product.prodname_secret_scanning %} as a push protection in private or internal repositories, the enterprise or organization also needs to have {% data variables.product.prodname_GH_advanced_security %} enabled.{% endif %} For more information, see {% ifversion secret-scanning-enterprise-level %}"[AUTOTITLE](/admin/code-security/managing-github-advanced-security-for-your-enterprise/managing-github-advanced-security-features-for-your-enterprise),"{% endif %} "[AUTOTITLE](/organizations/keeping-your-organization-secure/managing-security-settings-for-your-organization/managing-security-and-analysis-settings-for-your-organization)," "[AUTOTITLE](/repositories/managing-your-repositorys-settings-and-features/enabling-features-for-your-repository/managing-security-and-analysis-settings-for-your-repository)," and "[AUTOTITLE](/get-started/learning-about-github/about-github-advanced-security)."
Expand Down
32 changes: 32 additions & 0 deletions content/code-security/secret-scanning/push-protection-for-users.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,32 @@
---
title: Push protection for users
intro: 'You can use {% data variables.product.prodname_secret_scanning %} to block commits containing secrets in any public repository by enabling push protection for yourself.'
versions:
feature: secret-scanning-push-protection-for-users
type: how_to
topics:
- Secret scanning
- Advanced Security
- Alerts
- User account
---

{% data reusables.secret-scanning.push-protection-for-users-beta %}

## About push protection for users

With push protection for users, you can enable push protection for yourself, so that no matter which public repository you push to, you will be protected. Additionally, if you are a repository administrator, or an organization owner, you can enable push protection for your repository or organization, respectively. For more information, see "[AUTOTITLE](/code-security/secret-scanning/push-protection-for-repositories-and-organizations)."

If push protection is not enabled for the repository you are pushing to, but you have push protection for yourself enabled, no alerts will be created after you push a secret. However, if the bypassed secret is a {% data variables.product.prodname_dotcom %} token, the token will be revoked and you will be notified by email.

For information on the secrets and service providers supported for push protection, see "[AUTOTITLE](/code-security/secret-scanning/secret-scanning-patterns#supported-secrets)."

## Enabling push protection for yourself

You can enable push protection for yourself through your personal account settings.

{% data reusables.user-settings.access_settings %}
{% data reusables.user-settings.security-analysis %}
1. Under "User", to the right of "Push protection for yourself", click **Enable**.

![Screenshot of the "User" section of the "Code security and analysis" settings page. A button labeled "Enable" is outlined in dark orange.](/assets/images/help/security/push-protection-for-yourself.png)
Original file line number Diff line number Diff line change
Expand Up @@ -69,6 +69,8 @@ If you use the REST API for secret scanning, you can use the `Secret type` to re

Push protection alerts are user alerts that are reported by push protection. {% data variables.product.prodname_secret_scanning_caps %} as a push protection currently scans repositories for secrets issued by some service providers.

{% ifversion secret-scanning-push-protection-for-users %}Push protection alerts are not created for secrets that are bypassed with user-based push protection only. For more information, see "[AUTOTITLE](/code-security/secret-scanning/push-protection-for-users)."{% endif %}

{% data reusables.secret-scanning.secret-scanning-pattern-pair-matches %}

{% data reusables.secret-scanning.push-protection-older-tokens %} For more information about push protection limitations, see "[AUTOTITLE](/code-security/secret-scanning/troubleshooting-secret-scanning#push-protection-and-pattern-versions)."
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -39,4 +39,4 @@ Only include a maximum of eight different tools in an article. Including more to
## Adding new tools
If a writer determines that adding a new tool is the only way to accurately document something, they should explain their reasoning in the content planning stage. Whoever reviews content plan should consider if there are any alternative ways to address the documentation need without adding a new tool. If a new tool is the only way to create accurate documentation, the new tool should be added. If there is an alternative content solution that does not add a new tool, that option should be used.

To add a new tool, add an entry to the `allTools` object in the [`lib/all-tools.js`](https://github.com/github/docs/blob/main/lib/all-tools.js) file as a key-value pair. Add new tools in alphabetical order.
To add a new tool, add an entry to the `allTools` object in the [`lib/all-tools.js`](https://github.com/github/docs/blob/main/src/tools/lib/all-tools.js) file as a key-value pair. Add new tools in alphabetical order.
Original file line number Diff line number Diff line change
Expand Up @@ -22,10 +22,25 @@ You can also use cherry-picking when collaborating with a team. Some projects in
![Screenshot of the "Current Branch" dropdown view. Under "Recent Branches", a branch, named "my-feature", is highlighted with an orange outline.](/assets/images/help/desktop/select-branch-from-dropdown.png)

{% data reusables.desktop.history-tab %}
1. Drag the commit that you want to cherry-pick from the "History" tab to the {% octicon "git-branch" aria-hidden="true" %} **Current Branch** dropdown menu, then drop the commit on the branch that you want to copy the commit to.
1. Select the commit you would like to cherry-pick.

{% mac %}

You can select one commit or select multiple commits using <kbd>Command</kbd> or <kbd>Shift</kbd>.

{% endmac %}

{% windows %}

You can select one commit or select multiple commits using <kbd>Ctrl</kbd> or <kbd>Shift</kbd>.

{% endwindows %}

1. Right-click the selected commit and click **Cherry pick commit**, then select the branch that you want to copy the commit to. You can also drag the commit that you want to cherry-pick from the "History" tab to the {% octicon "git-branch" aria-hidden="true" %} **Current Branch** dropdown menu, then drop the commit on the branch that you want to copy the commit to.

![Screenshot of the "History" tab and the "Current Branch" dropdown view. The cursor hovers over the "my-feature" branch, and "plus one" icons indicate the addition of one commit.](/assets/images/help/desktop/cherry-picking.png)


## Further reading

- [git-cherry-pick](https://git-scm.com/docs/git-cherry-pick) in the Git documentation
Original file line number Diff line number Diff line change
Expand Up @@ -32,9 +32,10 @@ If system notifications are disabled for {% data variables.product.prodname_desk

{% mac %}

1. In the menu bar, select the Apple icon, then click **System Preferences**.
1. Select **Notifications & Focus**.
1. Select **{% data variables.product.prodname_desktop %}** from the list of applications.
{% data reusables.desktop.mac-select-desktop-menu %}
1. In the "Preferences" window, on the "Notifications" pane, select **Enable notifications**.
1. In the "Enable notifications" description field, click the **Notification Settings** link to open the "Notifications" pane in the macOS "System Settings" window.
1. In the "Application Notifications" list, select **{% data variables.product.prodname_desktop %}**.
1. Click **Allow Notifications**.

For more information about macOS system notifications, see "[Use notifications on your Mac](https://support.apple.com/en-us/HT204079)."
Expand All @@ -43,9 +44,11 @@ For more information about macOS system notifications, see "[Use notifications o

{% windows %}

1. Open the **Start** menu, then select **Settings**.
1. Select **System**, then click **Notifications**.
1. Find **{% data variables.product.prodname_desktop %}** in the application list and click **On**.
{% data reusables.desktop.windows-choose-options %}
1. In the "Options" windows, on the "Notifications" pane, select **Enable notifications**.
1. In the "Enable notifications" description field, click the **Notification Settings** link to open the "Notifications" pane in the Windows "Settings" window.
1. Under "Notifications", to enable notifications for Windows, click **On**.
1. Under "Notifications from apps and other senders", find "{% data variables.product.prodname_desktop %}" in the application list and click **On**.

For more information about Windows system notifications, see "[Change notification settings in Windows](https://support.microsoft.com/en-us/windows/change-notification-settings-in-windows-8942c744-6198-fe56-4639-34320cf9444e)."

Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -63,3 +63,14 @@ To troubleshoot, contact your system administrator.
This error can occur when Mandatory ASLR is enabled. Enabling Mandatory ASLR affects the MSYS2 core library, which {% data variables.product.prodname_desktop %} relies upon to emulate process forking.

To troubleshoot this error, either disable Mandatory ASLR or explicitly allow all executables under `<Git>\usr\bin` which depend on MSYS2.

### `This operating system is no longer supported. Software updates have been disabled` notification

This notification is shown if you are running a version of Windows that is no longer compatible with {% data variables.product.prodname_desktop %}. {% data variables.product.prodname_desktop %} supports {% data variables.desktop.windows-versions %}. If you are running a supported Windows operating system and are seeing this notification, this may be because compatibility mode has been enabled for {% data variables.product.prodname_desktop %}. To check if compatibility mode is enabled, follow these steps.

1. Open the Windows **Start Menu**.
1. Search for "{% data variables.product.prodname_desktop %}".
1. Select and hold (or right-click) **{% data variables.product.prodname_desktop %}** and click **Open file location**.
1. Select and hold (or right-click) the {% data variables.product.prodname_desktop %} shortcut and click **Properties**.
1. Select the **Compatibility** tab.
1. In the "Compatibility mode" section, ensure that the **Run this program in compatibility mode** checkbox is deselected.
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@ shortTitle: Contribute to open source

If there's a particular topic that interests you, visit `github.com/topics/<topic>`. For example, if you are interested in machine learning, you can find relevant projects and good first issues by visiting https://github.com/topics/machine-learning. You can browse popular topics by visiting [Topics](https://github.com/topics). You can also search for repositories that match a topic you're interested in. For more information, see "[AUTOTITLE](/search-github/searching-on-github/searching-for-repositories#search-by-topic)."

If you've been active on {% data variables.location.product_location %}, you can find personalized recommendations for projects and good first issues based on your past contributions, stars, and other activities in [Explore](https://github.com/explore). You can also sign up for the Explore newsletter to receive emails about opportunities to contribute to {% data variables.product.product_name %} based on your interests. To sign up, see [Explore email newsletter](https://github.com/explore/subscribe).
If you've been active on {% data variables.location.product_location %}, you can find personalized recommendations for projects and good first issues based on your past contributions, stars, and other activities in [Explore {% data variables.product.prodname_dotcom %}](https://github.com/explore). You can also sign up for the Explore newsletter to receive emails about opportunities to contribute to {% data variables.product.product_name %} based on your interests. To sign up, see [Explore email newsletter](https://github.com/explore/subscribe).

Keep up with recent activity from repositories you watch, as well as people and organizations you follow, with your personal dashboard. For more information, see "[AUTOTITLE](/account-and-profile/setting-up-and-managing-your-personal-account-on-github/managing-personal-account-settings/about-your-personal-dashboard)."

Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -28,7 +28,7 @@ Starring makes it easy to find a repository or topic again later. You can see al
You can star repositories and topics to discover similar projects on {% data variables.product.product_name %}. When you star repositories or topics, {% data variables.product.product_name %} may recommend related content on your personal dashboard. For more information, see "[AUTOTITLE](/get-started/exploring-projects-on-github/finding-ways-to-contribute-to-open-source-on-github)" and "[AUTOTITLE](/account-and-profile/setting-up-and-managing-your-personal-account-on-github/managing-personal-account-settings/about-your-personal-dashboard#staying-updated-with-activity-from-the-community)."
{% endif %}

Starring a repository also shows appreciation to the repository maintainer for their work. Many of {% data variables.product.prodname_dotcom %}'s repository rankings depend on the number of stars a repository has. In addition, [Explore](https://github.com/explore) shows popular repositories based on the number of stars they have.
Starring a repository also shows appreciation to the repository maintainer for their work. Many of {% data variables.product.prodname_dotcom %}'s repository rankings depend on the number of stars a repository has. In addition, [Explore {% data variables.product.prodname_dotcom %}](https://github.com/explore) shows popular repositories based on the number of stars they have.

## Starring a repository

Expand All @@ -44,7 +44,7 @@ Starring a repository is a simple two-step process.

## Viewing who has starred a repository

You can view everyone who has starred a public repository or a private repository you have access to.
You can view everyone who has starred a public repository or a private repository you have access to.

To view everyone who has starred a repository, add `/stargazers` to the end of the URL of a repository. For example, to view stargazers for the github/docs repository, visit https://github.com/github/docs/stargazers.

Expand Down
2 changes: 1 addition & 1 deletion content/get-started/quickstart/fork-a-repo.md
Original file line number Diff line number Diff line change
Expand Up @@ -224,7 +224,7 @@ You can make any changes to a fork, including:

Fork a repository to start contributing to a project. {% data reusables.repositories.you-can-fork %} For more information about when you can fork a repository, see "[AUTOTITLE](/pull-requests/collaborating-with-pull-requests/working-with-forks/about-permissions-and-visibility-of-forks)."

{% ifversion fpt or ghec %}You can browse [Explore](https://github.com/explore) to find projects and start contributing to open source repositories. For more information, see "[AUTOTITLE](/get-started/exploring-projects-on-github/finding-ways-to-contribute-to-open-source-on-github)."
{% ifversion fpt or ghec %}You can browse [Explore {% data variables.product.prodname_dotcom %}](https://github.com/explore) to find projects and start contributing to open source repositories. For more information, see "[AUTOTITLE](/get-started/exploring-projects-on-github/finding-ways-to-contribute-to-open-source-on-github)."

{% endif %}

Expand Down
Loading