Secret scanning public monitoring for enterprises
GitHub announced the launch of secret scanning public monitoring for enterprise accounts. Previously, secret scanning for enterprises was limited to their own repositories. With this update, enterprises can now monitor public repositories across GitHub for secrets that may be associated with their organization. This includes detecting exposed API keys, tokens, and other credentials in public code. The feature is designed to help enterprises identify and respond to leaked secrets more proactively, reducing the risk of unauthorized access or data breaches. The announcement was made via the GitHub Changelog on July 2, 2026.
// why it matters
Enterprises can now detect leaked secrets in public repositories beyond their own, improving security posture.