diff --git a/content/code-security/code-scanning/index.md b/content/code-security/code-scanning/index.md deleted file mode 100644 index cf8fed662bd5..000000000000 --- a/content/code-security/code-scanning/index.md +++ /dev/null @@ -1,22 +0,0 @@ ---- -title: Finding security vulnerabilities and errors in your code with code scanning -shortTitle: Code scanning -allowTitleToDifferFromFilename: true -intro: 'Keep your code secure by using {% data variables.product.prodname_code_scanning %} to identify and fix potential security vulnerabilities and other errors in your code.' -product: '{% data reusables.gated-features.code-scanning %}' -redirect_from: - - /github/managing-security-vulnerabilities/finding-security-vulnerabilities-in-your-projects-code - - /github/finding-security-vulnerabilities-and-errors-in-your-code - - /code-security/secure-coding -versions: - fpt: '*' - ghes: '*' - ghec: '*' -topics: - - Code Security - - Code scanning - - CodeQL -children: - - /managing-code-scanning-alerts - - /managing-your-code-scanning-configuration ---- diff --git a/content/code-security/code-scanning/managing-code-scanning-alerts/index.md b/content/code-security/code-scanning/managing-code-scanning-alerts/index.md deleted file mode 100644 index 72951ec4c786..000000000000 --- a/content/code-security/code-scanning/managing-code-scanning-alerts/index.md +++ /dev/null @@ -1,24 +0,0 @@ ---- -title: Managing code scanning alerts -shortTitle: Manage alerts -intro: Learn how to triage, track, and resolve {% data variables.product.prodname_code_scanning %} alerts. -product: '{% data reusables.gated-features.code-scanning %}' -versions: - fpt: '*' - ghec: '*' - ghes: '*' -topics: - - Code Security - - Code scanning - - CodeQL -redirect_from: - - /code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/tracking-code-scanning-alerts-in-issues-using-task-lists - - /code-security/code-scanning/managing-code-scanning-alerts/tracking-code-scanning-alerts-in-issues-using-task-lists -children: - - /disabling-autofix-for-code-scanning - - /assessing-code-scanning-alerts-for-your-repository - - /resolving-code-scanning-alerts - - /fixing-alerts-in-security-campaign - - /triaging-code-scanning-alerts-in-pull-requests ---- - diff --git a/content/code-security/code-scanning/managing-your-code-scanning-configuration/index.md b/content/code-security/code-scanning/managing-your-code-scanning-configuration/index.md deleted file mode 100644 index 678c75104a32..000000000000 --- a/content/code-security/code-scanning/managing-your-code-scanning-configuration/index.md +++ /dev/null @@ -1,16 +0,0 @@ ---- -title: Managing your code scanning configuration -shortTitle: Manage code scanning -intro: You can manage your existing {% data variables.product.prodname_code_scanning %} configuration with the help of metrics and logging outputs generated by your analysis. -product: '{% data reusables.gated-features.code-scanning %}' -versions: - fpt: '*' - ghec: '*' - ghes: '*' -topics: - - Code Security - - Code scanning - - CodeQL -children: - - /enabling-delegated-alert-dismissal-for-code-scanning ---- diff --git a/content/code-security/concepts/supply-chain-security/about-dependabot-auto-triage-rules.md b/content/code-security/concepts/supply-chain-security/about-dependabot-auto-triage-rules.md index 89d3f4b9cc21..56f65c97eba8 100644 --- a/content/code-security/concepts/supply-chain-security/about-dependabot-auto-triage-rules.md +++ b/content/code-security/concepts/supply-chain-security/about-dependabot-auto-triage-rules.md @@ -18,6 +18,7 @@ redirect_from: - /code-security/dependabot/dependabot-alerts/using-alert-rules-to-prioritize-dependabot-alerts - /code-security/dependabot/dependabot-alert-rules/about-dependabot-alert-rules - /code-security/dependabot/dependabot-auto-triage-rules/about-dependabot-auto-triage-rules + - /code-security/dependabot/dependabot-auto-triage-rules contentType: concepts --- diff --git a/content/code-security/dependabot/dependabot-alerts/index.md b/content/code-security/dependabot/dependabot-alerts/index.md deleted file mode 100644 index 518c79af341c..000000000000 --- a/content/code-security/dependabot/dependabot-alerts/index.md +++ /dev/null @@ -1,20 +0,0 @@ ---- -title: Identifying vulnerabilities in your project's dependencies with Dependabot alerts -shortTitle: Dependabot alerts -intro: '{% data variables.product.prodname_dependabot %} generates {% data variables.product.prodname_dependabot_alerts %} when known vulnerabilities are detected in dependencies that your project uses.' -allowTitleToDifferFromFilename: true -versions: - fpt: '*' - ghes: '*' - ghec: '*' -topics: - - Dependabot - - Alerts - - Vulnerabilities - - Repositories - - Dependencies -children: - - /viewing-and-updating-dependabot-alerts - - /enable-delegated-alert-dismissal ---- - diff --git a/content/code-security/dependabot/dependabot-auto-triage-rules/index.md b/content/code-security/dependabot/dependabot-auto-triage-rules/index.md deleted file mode 100644 index 27832236a9d1..000000000000 --- a/content/code-security/dependabot/dependabot-auto-triage-rules/index.md +++ /dev/null @@ -1,19 +0,0 @@ ---- -title: Prioritizing Dependabot alerts with Dependabot auto-triage rules -shortTitle: Dependabot auto-triage rules -intro: You can use {% data variables.dependabot.auto_triage_rules %} to prioritize {% data variables.product.prodname_dependabot_alerts %}. -allowTitleToDifferFromFilename: true -versions: - feature: dependabot-auto-triage-rules -topics: - - Dependabot - - Alerts - - Vulnerabilities - - Repositories - - Dependencies -children: - - /managing-automatically-dismissed-alerts -redirect_from: - - /code-security/dependabot/dependabot-alert-rules ---- - diff --git a/content/code-security/dependabot/index.md b/content/code-security/dependabot/index.md index 1617ad94cd7c..e5f652796e51 100644 --- a/content/code-security/dependabot/index.md +++ b/content/code-security/dependabot/index.md @@ -14,8 +14,6 @@ topics: - Repositories - Dependencies children: - - /dependabot-alerts - - /dependabot-auto-triage-rules - /working-with-dependabot - /troubleshooting-dependabot --- diff --git a/content/code-security/how-tos/index.md b/content/code-security/how-tos/index.md index ec2bd10b98ec..9bca368d048f 100644 --- a/content/code-security/how-tos/index.md +++ b/content/code-security/how-tos/index.md @@ -19,7 +19,8 @@ children: - /secure-at-scale - /secure-your-secrets - /scan-code-for-vulnerabilities - - /secure-your-supply-chain + - secure-your-supply-chain + - manage-security-alerts - /maintain-quality-code - /report-and-fix-vulnerabilities - /view-and-interpret-data diff --git a/content/code-security/how-tos/manage-security-alerts/index.md b/content/code-security/how-tos/manage-security-alerts/index.md new file mode 100644 index 000000000000..526a97c5ca07 --- /dev/null +++ b/content/code-security/how-tos/manage-security-alerts/index.md @@ -0,0 +1,23 @@ +--- +title: Managing security alerts +shortTitle: Manage security alerts +intro: Manage alerts generated by security features. +versions: + fpt: '*' + ghes: '*' + ghec: '*' +contentType: how-tos +topics: + - Secret Protection + - Secret scanning + - Code Security + - Code scanning + - Vulnerabilities + - Dependencies + - Dependabot +children: + - remediate-alerts-at-scale + - manage-secret-scanning-alerts + - manage-code-scanning-alerts + - manage-dependabot-alerts +--- diff --git a/content/code-security/code-scanning/managing-code-scanning-alerts/assessing-code-scanning-alerts-for-your-repository.md b/content/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/assessing-code-scanning-alerts-for-your-repository.md similarity index 98% rename from content/code-security/code-scanning/managing-code-scanning-alerts/assessing-code-scanning-alerts-for-your-repository.md rename to content/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/assessing-code-scanning-alerts-for-your-repository.md index c4e0881a92ae..e0d8a003b040 100644 --- a/content/code-security/code-scanning/managing-code-scanning-alerts/assessing-code-scanning-alerts-for-your-repository.md +++ b/content/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/assessing-code-scanning-alerts-for-your-repository.md @@ -7,12 +7,14 @@ versions: fpt: '*' ghes: '*' ghec: '*' -type: how_to +contentType: how-tos topics: - Code Security - Code scanning - Alerts - Repositories +redirect_from: + - /code-security/code-scanning/managing-code-scanning-alerts/assessing-code-scanning-alerts-for-your-repository --- Anyone with read permission for a repository can see {% data variables.product.prodname_code_scanning %} annotations on pull requests. For more information, see [AUTOTITLE](/code-security/code-scanning/managing-code-scanning-alerts/triaging-code-scanning-alerts-in-pull-requests). diff --git a/content/code-security/code-scanning/managing-code-scanning-alerts/disabling-autofix-for-code-scanning.md b/content/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/disabling-autofix-for-code-scanning.md similarity index 97% rename from content/code-security/code-scanning/managing-code-scanning-alerts/disabling-autofix-for-code-scanning.md rename to content/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/disabling-autofix-for-code-scanning.md index 779b0e4f1498..7db6f7f67fb6 100644 --- a/content/code-security/code-scanning/managing-code-scanning-alerts/disabling-autofix-for-code-scanning.md +++ b/content/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/disabling-autofix-for-code-scanning.md @@ -6,12 +6,14 @@ intro: You can block availability of {% data variables.copilot.copilot_autofix % product: '{% data reusables.rai.code-scanning.gated-feature-autofix %}' versions: feature: code-scanning-autofix -type: how_to +contentType: how-tos topics: - Code Security - Code scanning - CodeQL - AI +redirect_from: + - /code-security/code-scanning/managing-code-scanning-alerts/disabling-autofix-for-code-scanning --- ## About disabling {% data variables.copilot.copilot_autofix_short %} for {% data variables.product.prodname_code_scanning %} diff --git a/content/code-security/code-scanning/managing-your-code-scanning-configuration/enabling-delegated-alert-dismissal-for-code-scanning.md b/content/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/enabling-delegated-alert-dismissal-for-code-scanning.md similarity index 91% rename from content/code-security/code-scanning/managing-your-code-scanning-configuration/enabling-delegated-alert-dismissal-for-code-scanning.md rename to content/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/enabling-delegated-alert-dismissal-for-code-scanning.md index 89e926e0491b..9936c63a2769 100644 --- a/content/code-security/code-scanning/managing-your-code-scanning-configuration/enabling-delegated-alert-dismissal-for-code-scanning.md +++ b/content/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/enabling-delegated-alert-dismissal-for-code-scanning.md @@ -1,16 +1,18 @@ --- title: Enabling delegated alert dismissal for code scanning -intro: 'You can use delegated alert dismissal to control who can dismiss an alert found by {% data variables.product.prodname_code_scanning %}.' +intro: You can use delegated alert dismissal to control who can dismiss an alert found by {% data variables.product.prodname_code_scanning %}. permissions: '{% data reusables.permissions.delegated-alert-dismissal %}' versions: feature: security-delegated-alert-dismissal -type: how_to +contentType: how-tos topics: - Code scanning - Advanced Security - Alerts - Repositories shortTitle: Enable delegated alert dismissal +redirect_from: + - /code-security/code-scanning/managing-your-code-scanning-configuration/enabling-delegated-alert-dismissal-for-code-scanning --- ## About enabling delegated alert dismissal diff --git a/content/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/index.md b/content/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/index.md new file mode 100644 index 000000000000..e40b56cb56b5 --- /dev/null +++ b/content/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/index.md @@ -0,0 +1,23 @@ +--- +title: Manage code scanning alerts +shortTitle: Code scanning alerts +intro: Discover how to assess, manage, and resolve {% data variables.product.prodname_code_scanning %} alerts to keep your code secure. +versions: + fpt: '*' + ghes: '*' + ghec: '*' +contentType: how-tos +topics: + - Code Security + - Code scanning + - Alerts + - Repositories +redirect_from: + - /code-security/code-scanning/managing-code-scanning-alerts +children: + - assessing-code-scanning-alerts-for-your-repository + - triaging-code-scanning-alerts-in-pull-requests + - resolving-code-scanning-alerts + - enabling-delegated-alert-dismissal-for-code-scanning + - disabling-autofix-for-code-scanning +--- diff --git a/content/code-security/code-scanning/managing-code-scanning-alerts/resolving-code-scanning-alerts.md b/content/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/resolving-code-scanning-alerts.md similarity index 98% rename from content/code-security/code-scanning/managing-code-scanning-alerts/resolving-code-scanning-alerts.md rename to content/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/resolving-code-scanning-alerts.md index d637bb3fe3d1..53bffe071e7f 100644 --- a/content/code-security/code-scanning/managing-code-scanning-alerts/resolving-code-scanning-alerts.md +++ b/content/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/resolving-code-scanning-alerts.md @@ -1,7 +1,7 @@ --- title: Resolving code scanning alerts shortTitle: Resolve alerts -intro: 'From the security view, you can view, fix, or dismiss alerts for potential vulnerabilities or errors in your project''s code.' +intro: From the security view, you can view, fix, or dismiss alerts for potential vulnerabilities or errors in your project's code. permissions: '{% data reusables.permissions.code-scanning-all-alerts %}' versions: fpt: '*' @@ -16,7 +16,8 @@ redirect_from: - /github/finding-security-vulnerabilities-and-errors-in-your-code/automatically-scanning-your-code-for-vulnerabilities-and-errors/managing-code-scanning-alerts-for-your-repository - /code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/managing-code-scanning-alerts-for-your-repository - /code-security/code-scanning/managing-code-scanning-alerts/managing-code-scanning-alerts-for-your-repository -type: how_to + - /code-security/code-scanning/managing-code-scanning-alerts/resolving-code-scanning-alerts +contentType: how-tos topics: - Code Security - Code scanning diff --git a/content/code-security/code-scanning/managing-code-scanning-alerts/triaging-code-scanning-alerts-in-pull-requests.md b/content/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/triaging-code-scanning-alerts-in-pull-requests.md similarity index 98% rename from content/code-security/code-scanning/managing-code-scanning-alerts/triaging-code-scanning-alerts-in-pull-requests.md rename to content/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/triaging-code-scanning-alerts-in-pull-requests.md index b1c7a7b849f1..393bfd0b209b 100644 --- a/content/code-security/code-scanning/managing-code-scanning-alerts/triaging-code-scanning-alerts-in-pull-requests.md +++ b/content/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/triaging-code-scanning-alerts-in-pull-requests.md @@ -1,7 +1,7 @@ --- title: Triaging code scanning alerts in pull requests shortTitle: Triage alerts in pull requests -intro: 'When {% data variables.product.prodname_code_scanning %} identifies a problem in a pull request, you can review the highlighted code and resolve the alert.' +intro: When {% data variables.product.prodname_code_scanning %} identifies a problem in a pull request, you can review the highlighted code and resolve the alert. permissions: '{% data reusables.permissions.code-scanning-pr-alerts %}' redirect_from: - /github/finding-security-vulnerabilities-and-errors-in-your-code/triaging-code-scanning-alerts-in-pull-requests @@ -9,11 +9,12 @@ redirect_from: - /code-security/secure-coding/automatically-scanning-your-code-for-vulnerabilities-and-errors/triaging-code-scanning-alerts-in-pull-requests - /github/finding-security-vulnerabilities-and-errors-in-your-code/automatically-scanning-your-code-for-vulnerabilities-and-errors/triaging-code-scanning-alerts-in-pull-requests - /code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/triaging-code-scanning-alerts-in-pull-requests + - /code-security/code-scanning/managing-code-scanning-alerts/triaging-code-scanning-alerts-in-pull-requests versions: fpt: '*' ghes: '*' ghec: '*' -type: how_to +contentType: how-tos topics: - Code Security - Code scanning diff --git a/content/code-security/dependabot/dependabot-alerts/enable-delegated-alert-dismissal.md b/content/code-security/how-tos/manage-security-alerts/manage-dependabot-alerts/enable-delegated-alert-dismissal.md similarity index 92% rename from content/code-security/dependabot/dependabot-alerts/enable-delegated-alert-dismissal.md rename to content/code-security/how-tos/manage-security-alerts/manage-dependabot-alerts/enable-delegated-alert-dismissal.md index b718d5df5acf..837e10cf17f6 100644 --- a/content/code-security/dependabot/dependabot-alerts/enable-delegated-alert-dismissal.md +++ b/content/code-security/how-tos/manage-security-alerts/manage-dependabot-alerts/enable-delegated-alert-dismissal.md @@ -1,17 +1,19 @@ --- title: Enabling delegated alert dismissal for Dependabot -intro: 'Increase your governance over your {% data variables.product.prodname_dependabot_alerts %} with delegated alert dismissal.' +intro: Increase your governance over your {% data variables.product.prodname_dependabot_alerts %} with delegated alert dismissal. permissions: '{% data reusables.permissions.delegated-alert-dismissal %}' shortTitle: Enable delegated alert dismissal versions: feature: dependabot-delegated-alert-dismissal -type: how_to +contentType: how-tos topics: - Dependabot - Code Security - Security updates - Alerts - Dependencies +redirect_from: + - /code-security/dependabot/dependabot-alerts/enable-delegated-alert-dismissal --- ## About enabling delegated alert dismissal diff --git a/content/code-security/how-tos/manage-security-alerts/manage-dependabot-alerts/index.md b/content/code-security/how-tos/manage-security-alerts/manage-dependabot-alerts/index.md new file mode 100644 index 000000000000..c5b1e1564bf4 --- /dev/null +++ b/content/code-security/how-tos/manage-security-alerts/manage-dependabot-alerts/index.md @@ -0,0 +1,20 @@ +--- +title: Manage Dependabot alerts +shortTitle: Dependabot alerts +intro: Learn how to view, manage, and resolve {% data variables.product.prodname_dependabot_alerts %} to keep your dependencies secure. +versions: + fpt: '*' + ghes: '*' + ghec: '*' +contentType: how-tos +topics: + - Code Security + - Dependabot + - Security updates + - Alerts + - Repositories +children: + - viewing-and-updating-dependabot-alerts + - managing-automatically-dismissed-alerts + - enable-delegated-alert-dismissal +--- diff --git a/content/code-security/dependabot/dependabot-auto-triage-rules/managing-automatically-dismissed-alerts.md b/content/code-security/how-tos/manage-security-alerts/manage-dependabot-alerts/managing-automatically-dismissed-alerts.md similarity index 88% rename from content/code-security/dependabot/dependabot-auto-triage-rules/managing-automatically-dismissed-alerts.md rename to content/code-security/how-tos/manage-security-alerts/manage-dependabot-alerts/managing-automatically-dismissed-alerts.md index a35632b03915..1245b36fb9cc 100644 --- a/content/code-security/dependabot/dependabot-auto-triage-rules/managing-automatically-dismissed-alerts.md +++ b/content/code-security/how-tos/manage-security-alerts/manage-dependabot-alerts/managing-automatically-dismissed-alerts.md @@ -1,13 +1,13 @@ --- title: Managing alerts that have been automatically dismissed by a Dependabot auto-triage rule -intro: 'You can filter to see which alerts have been auto-dismissed by a rule, and you can reopen dismissed alerts.' +intro: You can filter to see which alerts have been auto-dismissed by a rule, and you can reopen dismissed alerts. allowTitleToDifferFromFilename: true permissions: '{% data reusables.permissions.dependabot-auto-triage-rules %}' versions: fpt: '*' ghec: '*' ghes: '*' -type: how_to +contentType: how-tos topics: - Dependabot - Alerts @@ -17,6 +17,7 @@ topics: shortTitle: Manage auto-dismissed alerts redirect_from: - /code-security/dependabot/dependabot-alert-rules/managing-automatically-dismissed-alerts + - /code-security/dependabot/dependabot-auto-triage-rules/managing-automatically-dismissed-alerts --- ## Managing automatically dismissed alerts diff --git a/content/code-security/dependabot/dependabot-alerts/viewing-and-updating-dependabot-alerts.md b/content/code-security/how-tos/manage-security-alerts/manage-dependabot-alerts/viewing-and-updating-dependabot-alerts.md similarity index 98% rename from content/code-security/dependabot/dependabot-alerts/viewing-and-updating-dependabot-alerts.md rename to content/code-security/how-tos/manage-security-alerts/manage-dependabot-alerts/viewing-and-updating-dependabot-alerts.md index 774d464fec09..312bea82236f 100644 --- a/content/code-security/dependabot/dependabot-alerts/viewing-and-updating-dependabot-alerts.md +++ b/content/code-security/how-tos/manage-security-alerts/manage-dependabot-alerts/viewing-and-updating-dependabot-alerts.md @@ -1,18 +1,19 @@ --- title: Viewing and updating Dependabot alerts -intro: 'If {% data variables.product.github %} discovers insecure dependencies in your project, you can view details on the Dependabot alerts tab of your repository. Then, you can update your project to resolve or dismiss the alert.' +intro: If {% data variables.product.github %} discovers insecure dependencies in your project, you can view details on the Dependabot alerts tab of your repository. Then, you can update your project to resolve or dismiss the alert. redirect_from: - /articles/viewing-and-updating-vulnerable-dependencies-in-your-repository - /github/managing-security-vulnerabilities/viewing-and-updating-vulnerable-dependencies-in-your-repository - /code-security/supply-chain-security/viewing-and-updating-vulnerable-dependencies-in-your-repository - /code-security/supply-chain-security/managing-vulnerabilities-in-your-projects-dependencies/viewing-and-updating-vulnerable-dependencies-in-your-repository + - /code-security/dependabot/dependabot-alerts/viewing-and-updating-dependabot-alerts permissions: '{% data reusables.permissions.dependabot-alerts %}' shortTitle: View Dependabot alerts versions: fpt: '*' ghes: '*' ghec: '*' -type: how_to +contentType: how-tos topics: - Dependabot - Security updates diff --git a/content/code-security/secret-scanning/using-advanced-secret-scanning-and-push-protection-features/enabling-delegated-alert-dismissal-for-secret-scanning.md b/content/code-security/how-tos/manage-security-alerts/manage-secret-scanning-alerts/enabling-delegated-alert-dismissal-for-secret-scanning.md similarity index 92% rename from content/code-security/secret-scanning/using-advanced-secret-scanning-and-push-protection-features/enabling-delegated-alert-dismissal-for-secret-scanning.md rename to content/code-security/how-tos/manage-security-alerts/manage-secret-scanning-alerts/enabling-delegated-alert-dismissal-for-secret-scanning.md index 8b365c27e855..61dd7dfcccbf 100644 --- a/content/code-security/secret-scanning/using-advanced-secret-scanning-and-push-protection-features/enabling-delegated-alert-dismissal-for-secret-scanning.md +++ b/content/code-security/how-tos/manage-security-alerts/manage-secret-scanning-alerts/enabling-delegated-alert-dismissal-for-secret-scanning.md @@ -1,16 +1,18 @@ --- title: Enabling delegated alert dismissal for secret scanning -intro: 'You can use delegated alert dismissal to control who can dismiss an alert found by {% data variables.product.prodname_secret_scanning %}.' +intro: You can use delegated alert dismissal to control who can dismiss an alert found by {% data variables.product.prodname_secret_scanning %}. permissions: '{% data reusables.permissions.delegated-alert-dismissal %}' versions: feature: security-delegated-alert-dismissal -type: how_to +contentType: how-tos topics: - Secret scanning - Advanced Security - Alerts - Repositories shortTitle: Delegated alert dismissal +redirect_from: + - /code-security/secret-scanning/using-advanced-secret-scanning-and-push-protection-features/enabling-delegated-alert-dismissal-for-secret-scanning --- ## About enabling delegated alert dismissal diff --git a/content/code-security/how-tos/manage-security-alerts/manage-secret-scanning-alerts/index.md b/content/code-security/how-tos/manage-security-alerts/manage-secret-scanning-alerts/index.md new file mode 100644 index 000000000000..c56cf76960df --- /dev/null +++ b/content/code-security/how-tos/manage-security-alerts/manage-secret-scanning-alerts/index.md @@ -0,0 +1,22 @@ +--- +title: Manage secret scanning alerts +shortTitle: Secret scanning alerts +intro: Discover how to monitor, manage, and resolve {% data variables.secret-scanning.alerts %} to keep your sensitive information secure. +versions: + fpt: '*' + ghes: '*' + ghec: '*' +contentType: how-tos +topics: + - Secret scanning + - Secret Protection + - Alerts + - Repositories +redirect_from: + - /code-security/secret-scanning/managing-alerts-from-secret-scanning +children: + - monitoring-alerts + - viewing-alerts + - resolving-alerts + - enabling-delegated-alert-dismissal-for-secret-scanning +--- diff --git a/content/code-security/secret-scanning/managing-alerts-from-secret-scanning/monitoring-alerts.md b/content/code-security/how-tos/manage-security-alerts/manage-secret-scanning-alerts/monitoring-alerts.md similarity index 91% rename from content/code-security/secret-scanning/managing-alerts-from-secret-scanning/monitoring-alerts.md rename to content/code-security/how-tos/manage-security-alerts/manage-secret-scanning-alerts/monitoring-alerts.md index 57a9d2748d01..187008a07372 100644 --- a/content/code-security/secret-scanning/managing-alerts-from-secret-scanning/monitoring-alerts.md +++ b/content/code-security/how-tos/manage-security-alerts/manage-secret-scanning-alerts/monitoring-alerts.md @@ -1,12 +1,12 @@ --- title: Monitoring alerts from secret scanning -intro: 'Learn how and when {% data variables.product.github %} will notify you about a secret scanning alert.' +intro: Learn how and when {% data variables.product.github %} will notify you about a secret scanning alert. permissions: '{% data reusables.permissions.secret-scanning-alerts %}' versions: fpt: '*' ghes: '*' ghec: '*' -type: how_to +contentType: how-tos topics: - Secret scanning - Secret Protection @@ -14,6 +14,8 @@ topics: - Repositories shortTitle: Monitor alerts allowTitleToDifferFromFilename: true +redirect_from: + - /code-security/secret-scanning/managing-alerts-from-secret-scanning/monitoring-alerts --- ## Configuring notifications for {% data variables.secret-scanning.alerts %} diff --git a/content/code-security/secret-scanning/managing-alerts-from-secret-scanning/resolving-alerts.md b/content/code-security/how-tos/manage-security-alerts/manage-secret-scanning-alerts/resolving-alerts.md similarity index 93% rename from content/code-security/secret-scanning/managing-alerts-from-secret-scanning/resolving-alerts.md rename to content/code-security/how-tos/manage-security-alerts/manage-secret-scanning-alerts/resolving-alerts.md index 57bcb2517409..f6eb70c83b16 100644 --- a/content/code-security/secret-scanning/managing-alerts-from-secret-scanning/resolving-alerts.md +++ b/content/code-security/how-tos/manage-security-alerts/manage-secret-scanning-alerts/resolving-alerts.md @@ -1,12 +1,12 @@ --- title: Resolving alerts from secret scanning -intro: 'After reviewing the details of a secret scanning alert, you should fix and then close the alert.' -permissions: 'Repository owners, organization owners, security managers, users assigned to {% data variables.secret-scanning.alerts %}, commit authors, and users with the **admin** role' +intro: After reviewing the details of a secret scanning alert, you should fix and then close the alert. +permissions: Repository owners, organization owners, security managers, users assigned to {% data variables.secret-scanning.alerts %}, commit authors, and users with the **admin** role versions: fpt: '*' ghes: '*' ghec: '*' -type: how_to +contentType: how-tos topics: - Secret scanning - Secret Protection @@ -14,6 +14,8 @@ topics: - Repositories shortTitle: Resolve alerts allowTitleToDifferFromFilename: true +redirect_from: + - /code-security/secret-scanning/managing-alerts-from-secret-scanning/resolving-alerts --- ## Fixing alerts diff --git a/content/code-security/secret-scanning/managing-alerts-from-secret-scanning/viewing-alerts.md b/content/code-security/how-tos/manage-security-alerts/manage-secret-scanning-alerts/viewing-alerts.md similarity index 96% rename from content/code-security/secret-scanning/managing-alerts-from-secret-scanning/viewing-alerts.md rename to content/code-security/how-tos/manage-security-alerts/manage-secret-scanning-alerts/viewing-alerts.md index 45b3e9fe3c9a..edcbea0d2dd8 100644 --- a/content/code-security/secret-scanning/managing-alerts-from-secret-scanning/viewing-alerts.md +++ b/content/code-security/how-tos/manage-security-alerts/manage-secret-scanning-alerts/viewing-alerts.md @@ -1,12 +1,12 @@ --- title: Viewing and filtering alerts from secret scanning -intro: 'Learn how to find and filter {% ifversion fpt or ghec %}{% data variables.secret-scanning.user_alerts %}{% else %}{% data variables.secret-scanning.user_alerts %} alerts{% endif %} for your repository.' +intro: Learn how to find and filter {% ifversion fpt or ghec %}{% data variables.secret-scanning.user_alerts %}{% else %}{% data variables.secret-scanning.user_alerts %} alerts{% endif %} for your repository. permissions: '{% data reusables.permissions.secret-scanning-alerts %}' versions: fpt: '*' ghes: '*' ghec: '*' -type: how_to +contentType: how-tos topics: - Secret scanning - Secret Protection @@ -14,6 +14,8 @@ topics: - Repositories shortTitle: View alerts allowTitleToDifferFromFilename: true +redirect_from: + - /code-security/secret-scanning/managing-alerts-from-secret-scanning/viewing-alerts --- ## About the {% data variables.product.prodname_secret_scanning %} alerts page diff --git a/content/code-security/securing-your-organization/fixing-security-alerts-at-scale/creating-managing-security-campaigns.md b/content/code-security/how-tos/manage-security-alerts/remediate-alerts-at-scale/creating-managing-security-campaigns.md similarity index 97% rename from content/code-security/securing-your-organization/fixing-security-alerts-at-scale/creating-managing-security-campaigns.md rename to content/code-security/how-tos/manage-security-alerts/remediate-alerts-at-scale/creating-managing-security-campaigns.md index e39e16a00e52..e4b28eb51dae 100644 --- a/content/code-security/securing-your-organization/fixing-security-alerts-at-scale/creating-managing-security-campaigns.md +++ b/content/code-security/how-tos/manage-security-alerts/remediate-alerts-at-scale/creating-managing-security-campaigns.md @@ -1,7 +1,7 @@ --- title: Creating and managing security campaigns -shortTitle: Create security campaigns -intro: 'You can manage security campaigns directly from the security overview for your organization.' +shortTitle: Create security campaign +intro: You can manage security campaigns directly from the security overview for your organization. allowTitleToDifferFromFilename: true permissions: '{% data reusables.permissions.security-org-enable %}' product: '{% data reusables.gated-features.security-campaigns %}' @@ -18,6 +18,7 @@ topics: - Security redirect_from: - /code-security/securing-your-organization/fixing-security-alerts-at-scale/creating-tracking-security-campaigns + - /code-security/securing-your-organization/fixing-security-alerts-at-scale/creating-managing-security-campaigns --- {% data reusables.security.secrets-campaign-preview %} diff --git a/content/code-security/security-overview/filtering-alerts-in-security-overview.md b/content/code-security/how-tos/manage-security-alerts/remediate-alerts-at-scale/filtering-alerts-in-security-overview.md similarity index 99% rename from content/code-security/security-overview/filtering-alerts-in-security-overview.md rename to content/code-security/how-tos/manage-security-alerts/remediate-alerts-at-scale/filtering-alerts-in-security-overview.md index 6fa7d4de4554..b5dc4fca9ed7 100644 --- a/content/code-security/security-overview/filtering-alerts-in-security-overview.md +++ b/content/code-security/how-tos/manage-security-alerts/remediate-alerts-at-scale/filtering-alerts-in-security-overview.md @@ -8,7 +8,7 @@ versions: fpt: '*' ghes: '*' ghec: '*' -type: how_to +contentType: how-tos topics: - Security overview - Code Security @@ -16,9 +16,10 @@ topics: - Alerts - Organizations - Teams -shortTitle: Filter security overview +shortTitle: Filter security alerts redirect_from: - /code-security/security-overview/filtering-alerts-in-the-security-overview + - /code-security/security-overview/filtering-alerts-in-security-overview --- ## About filtering security overview diff --git a/content/code-security/code-scanning/managing-code-scanning-alerts/fixing-alerts-in-security-campaign.md b/content/code-security/how-tos/manage-security-alerts/remediate-alerts-at-scale/fixing-alerts-in-security-campaign.md similarity index 96% rename from content/code-security/code-scanning/managing-code-scanning-alerts/fixing-alerts-in-security-campaign.md rename to content/code-security/how-tos/manage-security-alerts/remediate-alerts-at-scale/fixing-alerts-in-security-campaign.md index 812590741d23..6244b038988c 100644 --- a/content/code-security/code-scanning/managing-code-scanning-alerts/fixing-alerts-in-security-campaign.md +++ b/content/code-security/how-tos/manage-security-alerts/remediate-alerts-at-scale/fixing-alerts-in-security-campaign.md @@ -1,11 +1,11 @@ --- title: Fixing alerts in a security campaign shortTitle: Fix alerts in campaign -intro: 'Learn how to find and fix alerts in a security campaign.' +intro: Learn how to find and fix alerts in a security campaign. allowTitleToDifferFromFilename: true permissions: '{% data reusables.permissions.code-scanning-all-alerts %}' product: '{% data reusables.gated-features.security-campaigns %}' -type: how_to +contentType: how-tos versions: feature: security-campaigns topics: @@ -13,6 +13,8 @@ topics: - Code scanning - Alerts - Repositories +redirect_from: + - /code-security/code-scanning/managing-code-scanning-alerts/fixing-alerts-in-security-campaign --- ## Viewing alerts in a security campaign diff --git a/content/code-security/how-tos/manage-security-alerts/remediate-alerts-at-scale/index.md b/content/code-security/how-tos/manage-security-alerts/remediate-alerts-at-scale/index.md new file mode 100644 index 000000000000..0e36aa946818 --- /dev/null +++ b/content/code-security/how-tos/manage-security-alerts/remediate-alerts-at-scale/index.md @@ -0,0 +1,25 @@ +--- +title: Remediate alerts at scale +shortTitle: Remediate at scale +intro: Learn how to remediate large volumes of alerts using clear processes and effective prioritization. +versions: + fpt: '*' + ghes: '*' + ghec: '*' +contentType: how-tos +topics: + - Secret scanning + - Secret Protection + - Code Security + - Code scanning + - Dependabot + - Alerts + - Repositories + - Security updates + - Dependencies +children: + - filtering-alerts-in-security-overview + - creating-managing-security-campaigns + - tracking-security-campaigns + - fixing-alerts-in-security-campaign +--- diff --git a/content/code-security/securing-your-organization/fixing-security-alerts-at-scale/tracking-security-campaigns.md b/content/code-security/how-tos/manage-security-alerts/remediate-alerts-at-scale/tracking-security-campaigns.md similarity index 92% rename from content/code-security/securing-your-organization/fixing-security-alerts-at-scale/tracking-security-campaigns.md rename to content/code-security/how-tos/manage-security-alerts/remediate-alerts-at-scale/tracking-security-campaigns.md index 2caf0ed6f666..914762fd3174 100644 --- a/content/code-security/securing-your-organization/fixing-security-alerts-at-scale/tracking-security-campaigns.md +++ b/content/code-security/how-tos/manage-security-alerts/remediate-alerts-at-scale/tracking-security-campaigns.md @@ -1,11 +1,10 @@ --- title: Tracking security campaigns -shortTitle: Track security campaigns -intro: 'You can monitor the progress of all your organization''s security campaigns, and track the status of individual campaigns.' +shortTitle: Track security campaign +intro: You can monitor the progress of all your organization's security campaigns, and track the status of individual campaigns. allowTitleToDifferFromFilename: true permissions: '{% data reusables.permissions.security-org-enable %}' product: '{% data reusables.gated-features.security-campaigns %}' -type: how_to audience: - driver contentType: how-tos @@ -16,6 +15,8 @@ topics: - Secret Protection - Organizations - Security +redirect_from: + - /code-security/securing-your-organization/fixing-security-alerts-at-scale/tracking-security-campaigns --- {% data reusables.security.secrets-campaign-preview %} diff --git a/content/code-security/how-tos/scan-code-for-vulnerabilities/index.md b/content/code-security/how-tos/scan-code-for-vulnerabilities/index.md index 8f35384c0e65..0fe175e8beb9 100644 --- a/content/code-security/how-tos/scan-code-for-vulnerabilities/index.md +++ b/content/code-security/how-tos/scan-code-for-vulnerabilities/index.md @@ -6,6 +6,8 @@ versions: ghes: '*' ghec: '*' contentType: how-tos +redirect_from: + - /code-security/code-scanning children: - /configure-code-scanning - /manage-your-configuration diff --git a/content/code-security/how-tos/scan-code-for-vulnerabilities/manage-your-configuration/index.md b/content/code-security/how-tos/scan-code-for-vulnerabilities/manage-your-configuration/index.md index a3428193fdbf..2bc9319b162e 100644 --- a/content/code-security/how-tos/scan-code-for-vulnerabilities/manage-your-configuration/index.md +++ b/content/code-security/how-tos/scan-code-for-vulnerabilities/manage-your-configuration/index.md @@ -16,6 +16,8 @@ topics: - C# - Java - Kotlin +redirect_from: + - /code-security/code-scanning/managing-your-code-scanning-configuration children: - /about-the-tool-status-page - /editing-your-configuration-of-default-setup diff --git a/content/code-security/security-overview/enabling-security-features-for-multiple-repositories.md b/content/code-security/how-tos/secure-at-scale/configure-enterprise-security/establish-complete-coverage/enabling-security-features-for-multiple-repositories.md similarity index 97% rename from content/code-security/security-overview/enabling-security-features-for-multiple-repositories.md rename to content/code-security/how-tos/secure-at-scale/configure-enterprise-security/establish-complete-coverage/enabling-security-features-for-multiple-repositories.md index 64fb270fcce4..580c5a6493d7 100644 --- a/content/code-security/security-overview/enabling-security-features-for-multiple-repositories.md +++ b/content/code-security/how-tos/secure-at-scale/configure-enterprise-security/establish-complete-coverage/enabling-security-features-for-multiple-repositories.md @@ -5,7 +5,7 @@ intro: You can use security overview to select a subset of repositories and enab permissions: '{% data reusables.permissions.security-org-enable %}' allowTitleToDifferFromFilename: true versions: - feature: security-configurations-beta-and-pre-beta # Display article for old GHES versions only + feature: security-configurations-beta-and-pre-beta type: how_to topics: - Security overview @@ -14,6 +14,9 @@ topics: - Alerts - Organizations - Teams +redirect_from: + - /code-security/security-overview/enabling-security-features-for-multiple-repositories +contentType: how-tos --- ## About enabling security features diff --git a/content/code-security/how-tos/secure-at-scale/configure-enterprise-security/establish-complete-coverage/index.md b/content/code-security/how-tos/secure-at-scale/configure-enterprise-security/establish-complete-coverage/index.md index 1b680ea333a5..59c6b066b576 100644 --- a/content/code-security/how-tos/secure-at-scale/configure-enterprise-security/establish-complete-coverage/index.md +++ b/content/code-security/how-tos/secure-at-scale/configure-enterprise-security/establish-complete-coverage/index.md @@ -7,6 +7,7 @@ versions: ghec: '*' contentType: how-tos children: + - /enabling-security-features-for-multiple-repositories - /enabling-github-advanced-security-for-your-enterprise - /applying-the-github-recommended-security-configuration-to-your-enterprise - /creating-a-custom-security-configuration-for-your-enterprise diff --git a/content/code-security/how-tos/secure-your-secrets/customize-leak-detection/index.md b/content/code-security/how-tos/secure-your-secrets/customize-leak-detection/index.md index c559b74f7dcb..5492bf35afc7 100644 --- a/content/code-security/how-tos/secure-your-secrets/customize-leak-detection/index.md +++ b/content/code-security/how-tos/secure-your-secrets/customize-leak-detection/index.md @@ -10,6 +10,8 @@ topics: - Secret Protection - Secret scanning contentType: how-tos +redirect_from: + - /code-security/secret-scanning/using-advanced-secret-scanning-and-push-protection-features children: - /defining-custom-patterns-for-secret-scanning - /generating-regular-expressions-for-custom-patterns-with-copilot-secret-scanning diff --git a/content/code-security/how-tos/secure-your-supply-chain/secure-your-dependencies/configuring-dependabot-alerts.md b/content/code-security/how-tos/secure-your-supply-chain/secure-your-dependencies/configuring-dependabot-alerts.md index 75bf97adcd97..930f1fd72d3a 100644 --- a/content/code-security/how-tos/secure-your-supply-chain/secure-your-dependencies/configuring-dependabot-alerts.md +++ b/content/code-security/how-tos/secure-your-supply-chain/secure-your-dependencies/configuring-dependabot-alerts.md @@ -17,6 +17,7 @@ topics: - Repositories redirect_from: - /code-security/dependabot/dependabot-alerts/configuring-dependabot-alerts + - /code-security/dependabot/dependabot-alerts contentType: how-tos --- diff --git a/content/code-security/index.md b/content/code-security/index.md index 0d379b1f8fc9..ae084acb08cf 100644 --- a/content/code-security/index.md +++ b/content/code-security/index.md @@ -46,7 +46,6 @@ children: - /code-quality - /securing-your-organization - /secret-scanning - - /code-scanning - /codeql-for-vs-code - /security-advisories - /supply-chain-security diff --git a/content/code-security/secret-scanning/index.md b/content/code-security/secret-scanning/index.md index 94172adf0c48..c0bcd32f949d 100644 --- a/content/code-security/secret-scanning/index.md +++ b/content/code-security/secret-scanning/index.md @@ -15,7 +15,5 @@ topics: - Secret Protection - Repositories children: - - /managing-alerts-from-secret-scanning - - /using-advanced-secret-scanning-and-push-protection-features - /troubleshooting-secret-scanning-and-push-protection --- diff --git a/content/code-security/secret-scanning/managing-alerts-from-secret-scanning/index.md b/content/code-security/secret-scanning/managing-alerts-from-secret-scanning/index.md deleted file mode 100644 index 2a9d58346ef3..000000000000 --- a/content/code-security/secret-scanning/managing-alerts-from-secret-scanning/index.md +++ /dev/null @@ -1,24 +0,0 @@ ---- -title: Managing alerts from secret scanning -intro: Learn how to find, evaluate, and resolve alerts for secrets stored in your repository. -product: '{% data reusables.gated-features.secret-scanning %}' -redirect_from: - - /github/administering-a-repository/managing-alerts-from-secret-scanning - - /code-security/secret-security/managing-alerts-from-secret-scanning -versions: - fpt: '*' - ghes: '*' - ghec: '*' -type: how_to -topics: - - Secret scanning - - Secret Protection - - Alerts - - Repositories -shortTitle: Manage alerts -children: - - /viewing-alerts - - /resolving-alerts - - /monitoring-alerts ---- - diff --git a/content/code-security/secret-scanning/using-advanced-secret-scanning-and-push-protection-features/index.md b/content/code-security/secret-scanning/using-advanced-secret-scanning-and-push-protection-features/index.md deleted file mode 100644 index e373a6fe13a1..000000000000 --- a/content/code-security/secret-scanning/using-advanced-secret-scanning-and-push-protection-features/index.md +++ /dev/null @@ -1,17 +0,0 @@ ---- -title: Using advanced secret scanning and push protection features -shortTitle: Advanced features -allowTitleToDifferFromFilename: true -intro: Learn how you can customize {% data variables.product.prodname_secret_scanning %} to meet the needs of your company. -product: '{% data reusables.gated-features.secret-scanning %}' -versions: - fpt: '*' - ghes: '*' - ghec: '*' -topics: - - Secret scanning - - Secret Protection - - Repositories -children: - - /enabling-delegated-alert-dismissal-for-secret-scanning ---- diff --git a/content/code-security/securing-your-organization/fixing-security-alerts-at-scale/index.md b/content/code-security/securing-your-organization/fixing-security-alerts-at-scale/index.md deleted file mode 100644 index aec9da7d0297..000000000000 --- a/content/code-security/securing-your-organization/fixing-security-alerts-at-scale/index.md +++ /dev/null @@ -1,17 +0,0 @@ ---- -title: Fixing security alerts at scale -shortTitle: Fix alerts at scale -intro: Once you detect security alerts across your organization, you will want to create security campaigns to engage with developers and collaborate on fixing alerts. -versions: - feature: security-campaigns -audience: - - driver -topics: - - Code Security - - Secret Protection - - Organizations - - Security -children: - - /creating-managing-security-campaigns - - /tracking-security-campaigns ---- diff --git a/content/code-security/securing-your-organization/index.md b/content/code-security/securing-your-organization/index.md index 85b7386930c3..2e4ffa9d518f 100644 --- a/content/code-security/securing-your-organization/index.md +++ b/content/code-security/securing-your-organization/index.md @@ -12,5 +12,4 @@ topics: children: - /introduction-to-securing-your-organization-at-scale - /understanding-your-organizations-exposure-to-leaked-secrets - - /fixing-security-alerts-at-scale --- diff --git a/content/code-security/security-overview/index.md b/content/code-security/security-overview/index.md index d06fae56c7c9..56194542b5e8 100644 --- a/content/code-security/security-overview/index.md +++ b/content/code-security/security-overview/index.md @@ -13,7 +13,6 @@ topics: - Code Security - Secret Protection children: - - /filtering-alerts-in-security-overview - - /enabling-security-features-for-multiple-repositories - /review-alert-dismissal-requests --- + diff --git a/content/code-security/tutorials/secure-your-organization/best-practice-fix-alerts-at-scale.md b/content/code-security/tutorials/secure-your-organization/best-practice-fix-alerts-at-scale.md index 37b5c25fa407..6da636707758 100644 --- a/content/code-security/tutorials/secure-your-organization/best-practice-fix-alerts-at-scale.md +++ b/content/code-security/tutorials/secure-your-organization/best-practice-fix-alerts-at-scale.md @@ -17,6 +17,7 @@ topics: - Security redirect_from: - /code-security/securing-your-organization/fixing-security-alerts-at-scale/best-practice-fix-alerts-at-scale + - /code-security/securing-your-organization/fixing-security-alerts-at-scale --- ## Elements of a successful security campaign diff --git a/content/contributing/style-guide-and-content-model/about-the-content-model.md b/content/contributing/style-guide-and-content-model/about-the-content-model.md index 432ef2268fc6..85736888bc74 100644 --- a/content/contributing/style-guide-and-content-model/about-the-content-model.md +++ b/content/contributing/style-guide-and-content-model/about-the-content-model.md @@ -43,8 +43,6 @@ If a new top-level doc set is created, it is added to the homepage. If a category serves as the starting point for using a {% data variables.product.prodname_dotcom %} product or feature, it can be added to the homepage. -For example, under the "Security" grouping on the homepage, in addition to the [Code security](/code-security) top-level doc set, the [Supply chain security](/code-security/supply-chain-security),{% ifversion fpt or ghec %} [Security advisories](/code-security/security-advisories),{% endif %} [{% data variables.product.prodname_dependabot %}](/code-security/dependabot), [{% data variables.product.prodname_code_scanning_caps %}](/code-security/code-scanning), and [{% data variables.product.prodname_secret_scanning_caps %}](/code-security/secret-scanning) categories are included because each of those categories are the entry point to {% data variables.product.prodname_dotcom %} products and features. [Security overview](/code-security/security-overview) is not included on the homepage because it provides additional information for using secure coding features and is not an introduction to a product or feature. - ## Top-level doc set Top-level doc sets are organized around a {% data variables.product.prodname_dotcom %} product, feature, or core workflow. All top-level doc sets appear on the {% data variables.product.prodname_docs %} homepage. You should only create a top-level doc set when there is a large amount of content to be contained in the new doc set, multiple categories that are broken down into map topics, and the topic applies across products, features, or account types. If the content could fit in any existing top-level doc set, it probably belongs in that existing doc set. diff --git a/content/copilot/reference/ai-models/model-hosting.md b/content/copilot/reference/ai-models/model-hosting.md index b01c17e5b77b..6c09c868399b 100644 --- a/content/copilot/reference/ai-models/model-hosting.md +++ b/content/copilot/reference/ai-models/model-hosting.md @@ -29,6 +29,7 @@ Used for: * {% data variables.copilot.copilot_gpt_51_codex_mini %} * {% data variables.copilot.copilot_gpt_51_codex_max %} * {% data variables.copilot.copilot_gpt_52 %} +* {% data variables.copilot.copilot_gpt_52_codex %} These models are hosted by OpenAI and {% data variables.product.github %}'s Azure infrastructure. diff --git a/content/index.md b/content/index.md index fbdf0f8dd205..d85ed6ebad06 100644 --- a/content/index.md +++ b/content/index.md @@ -128,7 +128,7 @@ childGroups: - code-security/secret-scanning - code-security/supply-chain-security - code-security/dependabot - - code-security/code-scanning + - code-security/how-tos/scan-code-for-vulnerabilities - code-security/code-quality - name: Client apps octicon: DeviceMobileIcon diff --git a/data/learning-tracks/code-security.yml b/data/learning-tracks/code-security.yml index 90f0211b49b6..18a9fd9be3bb 100644 --- a/data/learning-tracks/code-security.yml +++ b/data/learning-tracks/code-security.yml @@ -46,7 +46,7 @@ dependabot_alerts: - >- /repositories/managing-your-repositorys-settings-and-features/enabling-features-for-your-repository/managing-security-and-analysis-settings-for-your-repository - >- - /code-security/dependabot/dependabot-alerts/viewing-and-updating-dependabot-alerts + /code-security/how-tos/manage-security-alerts/manage-dependabot-alerts/viewing-and-updating-dependabot-alerts - >- /code-security/concepts/supply-chain-security/about-dependabot-auto-triage-rules - >- @@ -121,7 +121,7 @@ secret_scanning: {% ifversion not fpt %}/code-security/how-tos/secure-your-secrets/customize-leak-detection/defining-custom-patterns-for-secret-scanning{% endif %} - - /code-security/secret-scanning/managing-alerts-from-secret-scanning + - /code-security/how-tos/manage-security-alerts/manage-secret-scanning-alerts - /code-security/reference/secret-security/supported-secret-scanning-patterns - >- {% ifversion secret-scanning-push-protection @@ -158,23 +158,23 @@ security_alerts: %} - >- {% ifversion ghec or ghes - %}/code-security/secret-scanning/managing-alerts-from-secret-scanning {% + %}/code-security/how-tos/manage-security-alerts/manage-secret-scanning-alerts {% endif %} - >- {% ifversion ghec or ghes - %}/code-security/code-scanning/managing-code-scanning-alerts/assessing-code-scanning-alerts-for-your-repository{% + %}/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/assessing-code-scanning-alerts-for-your-repository{% endif %} - >- {% ifversion ghec or ghes - %}/code-security/code-scanning/managing-code-scanning-alerts/resolving-code-scanning-alerts{% + %}/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/resolving-code-scanning-alerts{% endif %} - >- {% ifversion ghec or ghes - %}/code-security/code-scanning/managing-code-scanning-alerts/triaging-code-scanning-alerts-in-pull-requests{% + %}/code-security/how-tos/manage-security-alerts/manage-code-scanning-alerts/triaging-code-scanning-alerts-in-pull-requests{% endif %} - >- {% ifversion ghec or ghes - %}/code-security/dependabot/dependabot-alerts/viewing-and-updating-dependabot-alerts{% + %}/code-security/how-tos/manage-security-alerts/manage-dependabot-alerts/viewing-and-updating-dependabot-alerts{% endif %} - >- {% ifversion ghec or ghes diff --git a/data/reusables/copilot/copilot-coding-agent-non-auto-models.md b/data/reusables/copilot/copilot-coding-agent-non-auto-models.md index fa63af6da46d..b72bcb580ed9 100644 --- a/data/reusables/copilot/copilot-coding-agent-non-auto-models.md +++ b/data/reusables/copilot/copilot-coding-agent-non-auto-models.md @@ -1 +1,2 @@ -* {% data variables.copilot.copilot_claude_opus_45 %} \ No newline at end of file +* {% data variables.copilot.copilot_claude_opus_45 %} +* {% data variables.copilot.copilot_gpt_52_codex %} diff --git a/data/tables/copilot/model-comparison.yml b/data/tables/copilot/model-comparison.yml index 98e8a8dbe2f7..d3b81d6e78c0 100644 --- a/data/tables/copilot/model-comparison.yml +++ b/data/tables/copilot/model-comparison.yml @@ -52,6 +52,11 @@ excels_at: Multi-step problem solving and architecture-level code analysis further_reading: '[GPT-5.2 model card](https://cdn.openai.com/pdf/3a4153c8-c748-4b71-8e31-aecbde944f8d/oai_5_2_system-card.pdf)' +- name: GPT-5.2-Codex + task_area: Agentic software development + excels_at: Agentic tasks + further_reading: '[GPT-5.2-Codex model card](https://cdn.openai.com/pdf/ac7c37ae-7f4c-4442-b741-2eabdeaf77e0/oai_5_2_Codex.pdf)' + # Anthropic - name: Claude Haiku 4.5 task_area: Fast help with simple or repetitive tasks diff --git a/data/tables/copilot/model-multipliers.yml b/data/tables/copilot/model-multipliers.yml index 9c00a3aa4af7..b68d7cdeb928 100644 --- a/data/tables/copilot/model-multipliers.yml +++ b/data/tables/copilot/model-multipliers.yml @@ -81,6 +81,10 @@ multiplier_paid: 1.0 multiplier_free: Not applicable +- name: GPT-5.2-Codex + multiplier_paid: 1.0 + multiplier_free: Not applicable + - name: Grok Code Fast 1 multiplier_paid: 0.25 multiplier_free: Not applicable diff --git a/data/tables/copilot/model-release-status.yml b/data/tables/copilot/model-release-status.yml index 06879b9bc539..915399ecf855 100644 --- a/data/tables/copilot/model-release-status.yml +++ b/data/tables/copilot/model-release-status.yml @@ -81,6 +81,13 @@ ask_mode: true edit_mode: true +- name: 'GPT-5.2-Codex' + provider: 'OpenAI' + release_status: 'GA' + agent_mode: true + ask_mode: true + edit_mode: true + # Anthropic models - name: 'Claude Haiku 4.5' provider: 'Anthropic' diff --git a/data/tables/copilot/model-supported-clients.yml b/data/tables/copilot/model-supported-clients.yml index 47241ff5004e..5f0f075ca556 100644 --- a/data/tables/copilot/model-supported-clients.yml +++ b/data/tables/copilot/model-supported-clients.yml @@ -149,6 +149,14 @@ xcode: true jetbrains: true +- name: GPT-5.2-Codex + dotcom: true + vscode: true + vs: false + eclipse: false + xcode: false + jetbrains: false + - name: Grok Code Fast 1 dotcom: true vscode: true diff --git a/data/tables/copilot/model-supported-plans.yml b/data/tables/copilot/model-supported-plans.yml index b6f84a50c743..a7c16376a56b 100644 --- a/data/tables/copilot/model-supported-plans.yml +++ b/data/tables/copilot/model-supported-plans.yml @@ -131,6 +131,13 @@ business: true enterprise: true +- name: GPT-5.2-Codex + free: false + pro: true + pro_plus: true + business: true + enterprise: true + - name: Grok Code Fast 1 free: false pro: true diff --git a/data/variables/copilot.yml b/data/variables/copilot.yml index bca40b07c0a6..20206704ddf8 100644 --- a/data/variables/copilot.yml +++ b/data/variables/copilot.yml @@ -161,6 +161,7 @@ copilot_gpt_51_codex: 'GPT-5.1-Codex' copilot_gpt_51_codex_mini: 'GPT-5.1-Codex-Mini' copilot_gpt_51_codex_max: 'GPT-5.1-Codex-Max' copilot_gpt_52: 'GPT-5.2' +copilot_gpt_52_codex: 'GPT-5.2-Codex' # OpenAI 'o' series: copilot_o3: 'o3' copilot_o4_mini: 'o4-mini' diff --git a/package-lock.json b/package-lock.json index d94e80e56851..8a52ea324048 100644 --- a/package-lock.json +++ b/package-lock.json @@ -104,7 +104,7 @@ }, "devDependencies": { "@actions/core": "^2.0.0", - "@actions/github": "^6.0.0", + "@actions/github": "^7.0.0", "@axe-core/playwright": "^4.10.1", "@eslint/js": "^9.33.0", "@github/markdownlint-github": "^0.6.3", @@ -206,17 +206,6 @@ "@actions/http-client": "^3.0.0" } }, - "node_modules/@actions/core/node_modules/@actions/http-client": { - "version": "3.0.0", - "resolved": "https://registry.npmjs.org/@actions/http-client/-/http-client-3.0.0.tgz", - "integrity": "sha512-1s3tXAfVMSz9a4ZEBkXXRQD4QhY3+GAsWSbaYpeknPOKEeyRiU3lH+bHiLMZdo2x/fIeQ/hscL1wCkDLVM2DZQ==", - "dev": true, - "license": "MIT", - "dependencies": { - "tunnel": "^0.0.6", - "undici": "^5.28.5" - } - }, "node_modules/@actions/exec": { "version": "1.1.1", "resolved": "https://registry.npmjs.org/@actions/exec/-/exec-1.1.1.tgz", @@ -228,15 +217,19 @@ } }, "node_modules/@actions/github": { - "version": "6.0.0", - "resolved": "https://registry.npmjs.org/@actions/github/-/github-6.0.0.tgz", - "integrity": "sha512-alScpSVnYmjNEXboZjarjukQEzgCRmjMv6Xj47fsdnqGS73bjJNDpiiXmp8jr0UZLdUB6d9jW63IcmddUP+l0g==", + "version": "7.0.0", + "resolved": "https://registry.npmjs.org/@actions/github/-/github-7.0.0.tgz", + "integrity": "sha512-PyGODO938aoBTZd/IfN/+e+Pd5hUcVpyf+thm4CPESLeqhdSkq5QwMTGX9v84XHE1ifmHWBQ60KB8kIgm96opw==", "dev": true, + "license": "MIT", "dependencies": { - "@actions/http-client": "^2.2.0", + "@actions/http-client": "^3.0.1", "@octokit/core": "^5.0.1", - "@octokit/plugin-paginate-rest": "^9.0.0", - "@octokit/plugin-rest-endpoint-methods": "^10.0.0" + "@octokit/plugin-paginate-rest": "^9.2.2", + "@octokit/plugin-rest-endpoint-methods": "^10.4.0", + "@octokit/request": "^8.4.1", + "@octokit/request-error": "^5.1.1", + "undici": "^5.28.5" } }, "node_modules/@actions/github/node_modules/@octokit/auth-token": { @@ -393,13 +386,14 @@ "dev": true }, "node_modules/@actions/http-client": { - "version": "2.2.0", - "resolved": "https://registry.npmjs.org/@actions/http-client/-/http-client-2.2.0.tgz", - "integrity": "sha512-q+epW0trjVUUHboliPb4UF9g2msf+w61b32tAkFEwL/IwP0DQWgbCMM0Hbe3e3WXSKz5VcUXbzJQgy8Hkra/Lg==", + "version": "3.0.1", + "resolved": "https://registry.npmjs.org/@actions/http-client/-/http-client-3.0.1.tgz", + "integrity": "sha512-SbGS8c/vySbNO3kjFgSW77n83C4MQx/Yoe+b1hAdpuvfHxnkHzDq2pWljUpAA56Si1Gae/7zjeZsV0CYjmLo/w==", "dev": true, + "license": "MIT", "dependencies": { "tunnel": "^0.0.6", - "undici": "^5.25.4" + "undici": "^5.28.5" } }, "node_modules/@actions/io": { @@ -3024,7 +3018,6 @@ "version": "2.5.1", "resolved": "https://registry.npmjs.org/@parcel/watcher/-/watcher-2.5.1.tgz", "integrity": "sha512-dfUnCxiN9H4ap84DvD2ubjw+3vUNpstxa0TneY/Paat8a3R4uQZDLSvWjmznAY/DoahqTHl9V46HF/Zs3F29pg==", - "dev": true, "hasInstallScript": true, "license": "MIT", "optional": true, @@ -3064,7 +3057,6 @@ "cpu": [ "arm64" ], - "dev": true, "license": "MIT", "optional": true, "os": [ @@ -3085,7 +3077,6 @@ "cpu": [ "arm64" ], - "dev": true, "license": "MIT", "optional": true, "os": [ @@ -3106,7 +3097,6 @@ "cpu": [ "x64" ], - "dev": true, "license": "MIT", "optional": true, "os": [ @@ -3127,7 +3117,6 @@ "cpu": [ "x64" ], - "dev": true, "license": "MIT", "optional": true, "os": [ @@ -3148,7 +3137,6 @@ "cpu": [ "arm" ], - "dev": true, "license": "MIT", "optional": true, "os": [ @@ -3169,7 +3157,6 @@ "cpu": [ "arm" ], - "dev": true, "license": "MIT", "optional": true, "os": [ @@ -3190,7 +3177,6 @@ "cpu": [ "arm64" ], - "dev": true, "license": "MIT", "optional": true, "os": [ @@ -3211,7 +3197,6 @@ "cpu": [ "arm64" ], - "dev": true, "license": "MIT", "optional": true, "os": [ @@ -3232,7 +3217,6 @@ "cpu": [ "x64" ], - "dev": true, "license": "MIT", "optional": true, "os": [ @@ -3253,7 +3237,6 @@ "cpu": [ "x64" ], - "dev": true, "license": "MIT", "optional": true, "os": [ @@ -3274,7 +3257,6 @@ "cpu": [ "arm64" ], - "dev": true, "license": "MIT", "optional": true, "os": [ @@ -3295,7 +3277,6 @@ "cpu": [ "ia32" ], - "dev": true, "license": "MIT", "optional": true, "os": [ @@ -3316,7 +3297,6 @@ "cpu": [ "x64" ], - "dev": true, "license": "MIT", "optional": true, "os": [ @@ -3334,7 +3314,6 @@ "version": "1.0.3", "resolved": "https://registry.npmjs.org/detect-libc/-/detect-libc-1.0.3.tgz", "integrity": "sha512-pGjwhsmsp4kL2RTz08wcOlGN83otlqHeD/Z5T8GXZB+/YcpQ/dgo+lbU8ZsGxV0HIvqqxo9l7mqYwyYMD9bKDg==", - "dev": true, "license": "Apache-2.0", "optional": true, "bin": { @@ -8654,7 +8633,6 @@ "version": "2.3.2", "resolved": "https://registry.npmjs.org/fsevents/-/fsevents-2.3.2.tgz", "integrity": "sha512-xiqMQR4xAeHTuB9uWm+fFRcIOgKBMiOBP+eXiyT7jsgVCq1bkVygt00oASowB7EdtpOHaaPgKt812P9ab+DDKA==", - "dev": true, "hasInstallScript": true, "optional": true, "os": [ @@ -12611,7 +12589,6 @@ "version": "7.1.1", "resolved": "https://registry.npmjs.org/node-addon-api/-/node-addon-api-7.1.1.tgz", "integrity": "sha512-5m3bsyrjFWE1xf7nz7YXdN4udnVtXK6/Yfgn5qnahL6bCkf2yKt4k3nuTKAtT4r3IG8JNR2ncsIMdZuAzJjHQQ==", - "dev": true, "license": "MIT", "optional": true }, diff --git a/package.json b/package.json index 06e04e4e4aa3..1ba190bc662a 100644 --- a/package.json +++ b/package.json @@ -251,7 +251,7 @@ }, "devDependencies": { "@actions/core": "^2.0.0", - "@actions/github": "^6.0.0", + "@actions/github": "^7.0.0", "@axe-core/playwright": "^4.10.1", "@eslint/js": "^9.33.0", "@github/markdownlint-github": "^0.6.3", diff --git a/src/workflows/fr-add-docs-reviewers-requests.ts b/src/workflows/fr-add-docs-reviewers-requests.ts index 7b426be1e2d8..e4decceb0f72 100644 --- a/src/workflows/fr-add-docs-reviewers-requests.ts +++ b/src/workflows/fr-add-docs-reviewers-requests.ts @@ -154,7 +154,7 @@ async function run() { // Get the ID of the fields that we want to populate const datePostedID = findFieldID('Date posted', projectData) - const reviewDueDateID = findFieldID('Review due date', projectData) + const targetDateID = findFieldID('Target Date', projectData) const statusID = findFieldID('Status', projectData) const featureID = findFieldID('Feature', projectData) const contributorTypeID = findFieldID('Contributor type', projectData) @@ -208,7 +208,7 @@ async function run() { statusID, statusValueID: readyForReviewID, datePostedID, - reviewDueDateID, + targetDateID, contributorTypeID, contributorType, sizeTypeID, diff --git a/src/workflows/projects.ts b/src/workflows/projects.ts index 398b9e1924b8..8edc169dbe92 100644 --- a/src/workflows/projects.ts +++ b/src/workflows/projects.ts @@ -181,7 +181,7 @@ export function calculateDueDate(datePosted: Date, turnaround = 2) { // generates a GraphQL mutation to populate: // - "Status" (as variable passed with the request) // - "Date posted" (as today) -// - "Review due date" (as today + {turnaround} weekdays) +// - "Target Date" (as today + {turnaround} weekdays) // - "Contributor type" (as variable passed with the request) // - "Feature" (as {feature}) // - "Author" (as {author})" @@ -241,7 +241,7 @@ export function generateUpdateProjectV2ItemFieldMutation({ $statusID: ID! $statusValueID: String! $datePostedID: ID! - $reviewDueDateID: ID! + $targetDateID: ID! $contributorTypeID: ID! $contributorType: String! $sizeTypeID: ID! @@ -264,7 +264,7 @@ export function generateUpdateProjectV2ItemFieldMutation({ })} ${generateMutationToUpdateField({ item, - fieldID: '$reviewDueDateID', + fieldID: '$targetDateID', value: formatDateForProject(dueDate), fieldType: 'date', literal: true, diff --git a/src/workflows/ready-for-docs-review.ts b/src/workflows/ready-for-docs-review.ts index 7eb15436dc33..3d200994eadc 100644 --- a/src/workflows/ready-for-docs-review.ts +++ b/src/workflows/ready-for-docs-review.ts @@ -134,7 +134,7 @@ async function run() { // Get the ID of the fields that we want to populate const datePostedID = findFieldID('Date posted', data) - const reviewDueDateID = findFieldID('Review due date', data) + const targetDateID = findFieldID('Target Date', data) const statusID = findFieldID('Status', data) const featureID = findFieldID('Feature', data) const contributorTypeID = findFieldID('Contributor type', data) @@ -263,7 +263,7 @@ async function run() { statusID, statusValueID: readyForReviewID, datePostedID, - reviewDueDateID, + targetDateID, contributorTypeID, contributorType, sizeTypeID,