In May we announced that GitHub Advisory Database now includes Go advisories. Today we're excited to announce that all of GitHub's supply chain security features are available for Go modules, which will help the Go community discover, report, and prevent security vulnerabilities.
You can now set an expiration date on your new and existing personal access tokens.
Setting an expiration date on personal access tokens is highly recommended as this helps keep your information secure. GitHub will send you an email when it's time to renew a token that's about to expire. Tokens that have expired can be regenerated, giving you a duplicate token with the same properties as the original.
When using a personal access token with the GitHub API, you'll see a new response header,
GitHub-Authentication-Token-Expiration, indicating the token's expiration date. You can use this in scripts, for example to log a warning message as the expiration date approaches.