GitHub Advanced Security
Ingest code scanning and secret scanning alerts from GitHub.
Imports code scanning, Dependabot, and secret scanning alerts from GitHub Advanced Security into Basirah.
Prerequisites
- GitHub repository or organization with Advanced Security enabled
- Personal access token or API key with
security_eventsread scope
Authentication
Personal access token (PAT) or API key.
Configuration
owner string required GitHub organization or user that owns the repository.
repo string required Repository name to sync alerts from.
Data flow
Ingests code scanning and secret scanning alerts from GitHub and normalizes them into Basirah’s common finding format.