GitHub secret scanning protects users by searching repositories for known types of secrets. By identifying and flagging these secrets, our scans help prevent data leaks and fraud.
We have partnered with Aiven to scan for their tokens and help secure our mutual users on public repositories. Aiven tokens allow users to interact with Aiven hosted services and the Aiven API. GitHub will forward access tokens found in public repositories to Aiven, and the Aiven Customer Success Team will contact project owners via the normal service channel and work with them to rotate and revoke the affected credentials. Aiven will not revoke credentials without prior communication and acknowledgement from the project owner. You can read more information about Aiven’s tokens here.
GitHub Advanced Security customers can also scan for Aiven tokens and block them from entering their private repositories. All users can enable push protection for public repositories, for free.
You can now display your preferred pronouns on your GitHub Mobile profile. Adding pronouns to your profile helps create a more inclusive and welcoming community for all. To do so, update your public profile information in the web settings and see them reflected on GitHub Mobile. Learn more in our documentation.
Auto scaling self hosted runners using the actions runner controller and runner scale sets is now in public beta.