Skip to content

advanced-security/awesome-secret-scanning

Repository files navigation

Awesome GitHub secret scanning Awesome

A curated list of awesome GitHub Advanced Security secret scanning resources.

Secret Scanning Patterns

📊 Pattern Counts — GitHub: 519 partner types, 458 with push protection | ADO: 332 partner types (Updated: 2026-06-25)

GitHub

Secret Protection Inventory 2026-06-25 04:58:01Z
Number of Partner Secret Types 519 (62 with variants)
Number of Unique Partner Providers 199
Number of Secret Types with Push Protection 458
Number of Secret Types with Validity Check 165
Number of Secret Types with Base64 Support 21
Number of Secret Types with Extended Metadata 38
Non-Partner Patterns 10 (0 with validity checks)
Copilot Secret Scanning Patterns 1
Inventory Commit History Docs
Secret Scanning Changelog Changelog
GHES Versions / Count

GHES Version Count Push Protection Validity Check Base64 Extended Metadata
3.14 318 190 9 0 0
3.15 284 181 5 0 0
3.16 311 192 5 0 0
3.17 338 198 5 0 0
3.18 361 242 5 0 0
3.19 448 341 5 4 0
3.20 478 365 122 20 0
3.21 501 417 127 20 5
3.22 519 458 131 21 5

Azure DevOps

Secret Scanning Inventory 2026-06-25 04:58:01Z
Number of Partner Secret Types 332
Number of Secret Types with Push Protection 171
Number of Secret Types with Validity Check 231
Non-Partner Patterns 18 ( 6 with validity checks)
Copilot Secret Scanning Patterns 0
Inventory Commit History Docs Docs NonPartner
Secret Scanning Changes Commits Commits Non-Partner

Secret Scanning Custom Patterns

Notifications

Policy

  • advanced-security/policy-as-code - GitHub Advanced Security Policy as Code designed to allow users to configure their Risk threshold for security issues reported by GitHub Code Scanning, Secret Scanning and Dependabot Security.
  • advanced-security/probot-security-alerts - Sample GitHub App which monitors and enforces rules for code scanning, Dependabot, and secret scanning alerts

Tools

Secret Remediation

  • advanced-security/GSSAR - GitHub Secret Scanning Auto Remediator (GSSAR)
  • rtyley/bfg-repo-cleaner - tool that's built and maintained by the open source community. It provides a faster, simpler alternative to git filter-repo for removing unwanted data.
  • newren/git-filter-repo - Quickly rewrite git repository history (filter-branch replacement)

Contribute

Contributions welcome! Read the contribution guidelines first.

Why

What is an awesome list?

About

A curated list of awesome GitHub Advanced Security secret scanning resources.

Topics

Resources

License

Code of conduct

Contributing

Security policy

Stars

Watchers

Forks

Contributors