{"id":3759,"date":"2026-04-01T13:11:49","date_gmt":"2026-04-01T13:11:49","guid":{"rendered":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/2026\/04\/01\/github-adds-37-new-secret-detectors-in-march-extends-scanning-to-ai-coding-agents\/"},"modified":"2026-04-01T13:11:49","modified_gmt":"2026-04-01T13:11:49","slug":"github-adds-37-new-secret-detectors-in-march-extends-scanning-to-ai-coding-agents","status":"publish","type":"post","link":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/2026\/04\/01\/github-adds-37-new-secret-detectors-in-march-extends-scanning-to-ai-coding-agents\/","title":{"rendered":"GitHub Adds 37 New Secret Detectors in March, Extends Scanning to AI Coding Agents"},"content":{"rendered":"
\"\"<\/div>\n

\"\"<\/p>\n

GitHub shipped four secret scanning updates in March that collectively represent the most significant expansion of the platform\u2019s credential detection capabilities in months. The numbers: 37 new secret detectors across 22 providers; 39 token types now push-protected by default; new validity checks for AI and developer infrastructure tokens; and \u2014 most notably \u2014 secret scanning that now works inside AI coding agents through the GitHub MCP Server.<\/span><\/p>\n

For DevOps teams managing repositories where AI agents are increasingly generating code<\/a> and opening pull requests, this last addition changes the security equation.<\/span><\/p>\n

What Shipped in March<\/b><\/h3>\n

March 10: The big batch.<\/b> 28 new secret detectors from 15 providers, including Vercel (six token types alone), Snowflake, Supabase, Lark, and Shopify. Push protection expanded to 39 detectors enabled by default \u2014 meaning commits containing matching secrets are blocked before they reach the repository. Validity checks added for Airtable, DeepSeek, npm, Pinecone, and Sentry tokens, automatically verifying whether detected secrets are still active so teams can prioritize remediation.<\/span><\/p>\n

March 17: Secret scanning in AI coding agents.<\/b> The GitHub MCP Server can now scan code changes for exposed secrets before commits or pull requests are made. In MCP-enabled environments, AI coding agents invoke the secret-scanning engine in response to prompts and instructions. Results include structured data with locations and details for any secrets found. This is in public preview for repositories with GitHub Secret Protection enabled.<\/span><\/p>\n

March 23: Push protection exemptions at the repo level.<\/b> Organizations can now designate specific roles, teams, and apps as exempt from push protection enforcement directly from repository settings. Previously, exemptions could only be managed at the organization and enterprise level. Exemption status is evaluated at the time of each push.<\/span><\/p>\n

March 31: Nine more detectors.<\/b> New secret types from seven providers, including LangChain, Salesforce, and Figma. Secrets from Figma, Google, OpenVSX, and PostHog are now push-protected by default. Validity checks added for npm access tokens.<\/span><\/p>\n

Why the AI Agent Integration Matters Most<\/b><\/h3>\n

The March 17 MCP Server integration is the update that changes the operational model. When AI coding agents generate code \u2014 whether through GitHub Copilot, Claude Code, or any MCP-compatible tool \u2014 that code can now be scanned for secrets before it\u2019s committed. The agent doesn\u2019t need to know what a secret looks like. It sends the code to GitHub\u2019s scanning engine and receives structured results.<\/span><\/p>\n

This addresses a specific risk that\u2019s growing as the volume of AI-generated code increases. Anthropic reported that code output per engineer grew 200% last year. GitHub Copilot\u2019s coding agent now handles tasks autonomously through Jira and GitHub Issues. Cursor\u2019s cloud agents run in isolated VMs, producing merge-ready PRs. The more code agents generate, the more opportunities for secrets to leak \u2014 whether from training data patterns, hallucinated credentials, or copy-paste from context that includes real tokens.<\/span><\/p>\n

Having secret scanning available inside the agent\u2019s workflow \u2014 not just as a post-commit gate \u2014 means credentials can be caught before they enter the repository at all. That\u2019s earlier in the pipeline than push protection, which catches secrets at commit time, and earlier than alert-based scanning, which catches them after the fact.<\/span><\/p>\n

\u201cGitHub embedding secret scanning into its MCP Server positions credential detection where AI-generated code originates, inside the agent workflow. As coding agents produce pull requests autonomously, security enforcement that operates at commit time or post-commit faces a growing gap between code velocity and detection speed,\u201d according to Mitch Ashley, VP and practice lead for software lifecycle engineering at The Futurum Group<\/a>.<\/span><\/p>\n

\u201cOrganizations deploying AI coding agents at scale need layered detection that starts inside the agent\u2019s execution context. Teams applying the same credential hygiene assumptions to agent-generated code as human-written code will underestimate the exposure.\u201d<\/span><\/p>\n

The Provider Coverage Story<\/b><\/h3>\n

The specific providers added in March tell their own story about where secrets are leaking. Vercel got six new token types in a single update. Snowflake, Supabase, and Pinecone \u2014 core infrastructure for AI applications \u2014 all received new detectors. LangChain tokens are now detected, reflecting how quickly the AI agent framework ecosystem has become part of production infrastructure. DeepSeek tokens got validity checks, acknowledging the model provider\u2019s growing developer footprint.<\/span><\/p>\n

The push protection defaults are equally telling. When GitHub enables push protection by default for a token type, it means the pattern is reliable enough to block commits without generating excessive false positives. The expansion to 39 token types \u2014 including Airtable, Databricks, Heroku, PostHog, and Shopify \u2014 reflects confidence in the detection accuracy and a bet that developers would rather be blocked at commit time than deal with a leaked credential after the fact.<\/span><\/p>\n

For free public repositories, push protection defaults apply automatically. That\u2019s a significant security baseline for open-source projects where contributors may inadvertently commit credentials.<\/span><\/p>\n

Validity Checks and Remediation Priority<\/b><\/h3>\n

The expanded validity checks for npm, Airtable, DeepSeek, Pinecone, and Sentry tokens address a practical problem in secret scanning: alert fatigue. Not every detected secret is an active credential. Some have been rotated. Some have expired. Some were test values that never worked.<\/span><\/p>\n

Validity checks automatically verify whether a detected secret is still active. This lets security teams prioritize remediation \u2014 an active DeepSeek API key in a public repository is an immediate problem, while an expired Sentry token from a test environment can wait. GitHub previously improved validity checks for AWS Access Key IDs, where most alerts labeled \u201cunknown\u201d switched to \u201cvalid\u201d or \u201cinvalid\u201d after the update. That same pattern is now extending to more provider tokens.<\/span><\/p>\n

What This Means for DevOps<\/b><\/h3>\n

March\u2019s updates reflect a security infrastructure that\u2019s adapting to how code is actually being produced in 2026. AI agents generate code at scale. That code flows through automated pipelines. Secrets can leak at any point \u2014 from the agent\u2019s context, from patterns in training data, from copy-paste in prompts, from environment variables that get hardcoded by mistake.<\/span><\/p>\n

GitHub\u2019s response is to push detection earlier and make it available in more contexts: Inside AI coding agents via MCP, at commit time via push protection, and post-commit via alert scanning with validity checks. Each layer catches what the previous one missed.<\/span><\/p>\n

The push protection exemptions at the repository level are the governance complement. Not every push needs to be blocked \u2014 CI\/CD service accounts, security testing tools, and specific team roles may need exemptions. Managing those exemptions at the repo level rather than only at the org level gives teams more granular control without requiring administrator intervention for every exception.<\/span><\/p>\n

For teams running AI coding agents in production, the recommended sequence is clear: Enable the GitHub MCP Server with secret scanning, enable push protection with appropriate exemptions, and use validity checks to prioritize remediation of active credentials. That gives you three layers of detection before a secret reaches production.<\/span><\/p>\n

Read More<\/a><\/p>\n

\u200b<\/p>","protected":false},"excerpt":{"rendered":"

GitHub shipped four secret scanning updates in March that collectively represent the most significant expansion of the platform\u2019s credential detection […]<\/p>\n","protected":false},"author":1,"featured_media":3760,"comment_status":"","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[5],"tags":[],"class_list":["post-3759","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-devops"],"_links":{"self":[{"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/posts\/3759","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/comments?post=3759"}],"version-history":[{"count":0,"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/posts\/3759\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/media\/3760"}],"wp:attachment":[{"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/media?parent=3759"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/categories?post=3759"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/tags?post=3759"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}