Secret Alerts for Github Advanced Security for Azure DevOps
I've been setting up Github Advanced Security for Azure Devops, to use with Git hosted in Azure Devops (not Github), which has been largely successful. For the secret scanning, the system has identified existing secretes in our solutions, and I've enabled secret blocking on pushes which is also working well. However on the Security Overview page, Alerts for Secrets shows as disabled (see below), which suggests that there is a capability that has not been enabled.
What actions need to be undertaken to enable alerts for Secrets?
You can run REST API Repo Enablement - Get to check the enablement of your target repo.
For data retrieval on the security overview dashboard, it is using REST API Org Enablement - Get to gather summaries of enablement and alerts data. It may take some time for the backend job to gather the necessary data for the dashboard. Sometimes there may be some problems. Therefore, the security overview may be delayed or inconsistent with the actual situation.
Typically, if you have enabled Advanced Security for your repository, secret scanning is enabled.
It is recommended that you refer to the actual result. You can try to push a secret to your repository and see if it is discovered.
- Az CLI: Cannot run pipeline with runtime parameters
- AzureDevOps: NuGetCommand@2 push to DotNetCoreCLI@2 custom nuget push, with VSTS feed?
- How to access Azure DevOps Stage name in Powershell?
- How to use azure Storage Sync group to sync on-premises File Server Disks to azure IaaS VM folders
- No such file or directory: '/home/vsts/work/_temp/.azclitask/bin/bicep' when doing az deployment mg in an Azure DevOps pipeline
- My Azure DevOps CD pipeline is stuck in a queue forever
- ADO: upload an attachment to Azure DevOps via HTTP REST request
- An exception occurred while invoking executor 'executor://xunit/VsTestRunner2/uap': Could not load file or assembly 'System.IO.FileSystem
- Azure dev ops cicd yaml variable for appSettings, multi line causing an error
- Is there any reporting tools or methods available for Code Churn and coverage for Azure Devops
- Azure DevOps Pipeline conditional script arguments
- How to correct package version name in Azure pipeline and remove build ID
- Unable to complete git-tf checkin --deep due to access denied error
- Assigning users to tasks in Visual Studio Team Services
- How can I download an Azure Artifact (not build artifact) in a Azure Pipeline (YAML)
- Azure DevOps pipeline task `task: gitversion/execute@0` fails with unexpected error "##[error]SyntaxError: Unexpected end of JSON input"
- use stageDependencies in if-statements in Azure DevOps yaml
- I need to use some query results in an alert email notification in Azure ApplicationInsights
- Can you restrict which keys/secrets a user can access in an Azure Key Vault?
- Include multiple subfolders without known root folder using single glob pattern in Azure DevOps
- Visual Studio Developer Command Prompt\PowerShell Authentication
- Easy way to find un-parented stories
- Enable Code Coverage diff without a target/gate threshold in ADO
- Unable to see organizational-scoped artifacts feed in Azure DevOps, while permissions set on Read
- Checkout before stages in YAML
- Template error in YAML Pipeline - Azure DevOps
- How to choose from a selection when running Azure YAML pipeline
- Strange GIT behaviour in VS2022 - Shows error but still completes action
- SonarQube Publish Quality Gate Result error 400: API GET '/api/ce/task' failed, status code was: 400
- Connection string fails in migration when stored as variable in Azure pipeline