保护你的组织
构建技能,帮助你防止漏洞并解决组织中的警报问题。
Best practices for preventing data leaks in your organization
Learn guidance and recommendations to help you avoid private or sensitive data present in your organization from being exposed.
开展安全计划以大规模解决警报问题
启动一个针对性的安全活动,旨在修复组织内特定类别的安全警报,例如跨站点脚本(XSS)或其他类型的安全问题。
使用生产上下文确定 Dependabot 和代码扫描警报的优先级
通过使用外部系统和集成(如 Dynatrace、JFrog Artifactory、Dependabot 或自有 CI/CD 工作流)中的元数据,将修复重点放在真实风险上,针对部署到生产环境中的 code scanning 和 Microsoft Defender for Cloud 告警。
Interpreting secret risk assessment results
Understand the results from your secret risk assessment and prioritize leak remediation.
Interpreting code security risk assessment results
Understand the results from your code security risk assessment and prioritize vulnerability remediation.
Organizing remediation efforts for leaked secrets
Systematically organize and manage the remediation of leaked secrets using security campaigns and alert assignments.
防范安全威胁
在不久的将来,我应该采取哪些措施,并持续减少组织中 GitHub安全威胁的暴露?
Preparing for a security incident
Ensure you have the tools and processes in place to respond effectively to a security incident.
Responding to a security incident
Respond strategically to a security incident affecting organizations or repositories in your GitHub enterprise.