This version of GitHub Enterprise Server will be discontinued on 2026-08-25. Discontinued releases are not supported. No patch releases will be made, even for critical security issues. For better performance, improved security, and new features in {% data variables.product.prodname_ghe_server %}, see [AUTOTITLE](/admin/upgrading-your-instance/preparing-to-upgrade/overview-of-the-upgrade-process). For help with the upgrade, {% data variables.contact.enterprise_support %}.

Secret security

Learn about secret scanning patterns, risk report CSV contents, and GitHub secrets.

Understanding GitHub secret types

Learn about the usage, scope, and access permissions for GitHub secrets.

Supported secret scanning patterns

Lists of supported secrets and the partners that GitHub works with to prevent fraudulent use of secrets that were committed accidentally.

Secret scanning detection scope

Secret scanning uses pattern matching and validation to detect secrets. Detection varies based on pattern pairs, token types, and push protection settings.

Custom patterns reference

Use specific regular expression syntax to define accurate custom patterns for secret scanning.

Secret scanning pattern configuration data

Understand the data displayed in the secret scanning pattern configuration page to make informed decisions about push protection settings.