Securing the open source supply chain by scanning for package registry credentials

GitHub secret scanning has been securing our users’ code by scanning for and revoking secrets since 2015. Recently, we’ve focused on scanning for package registry credentials as well—a signif...

By · · 1 min read
Securing the open source supply chain by scanning for package registry credentials

Source: The GitHub Blog

GitHub secret scanning has been securing our users’ code by scanning for and revoking secrets since 2015. Recently, we’ve focused on scanning for package registry credentials as well—a significant and…