Organizations with secret scanning push protection can now designate specific roles, teams, and apps as exempt from push protection enforcement.

Exemption status is evaluated at the time of each push. When an exempt actor pushes content containing secrets, push protection is skipped and no bypass requests are created.

Exemptions can be configured at the organization and enterprise levels with security configurations.

Learn more about secret scanning and push protection exemptions.