GitHub Security Operations
Unified workflow for security operations combining code scanning, Dependabot, and secret scanning. Used by security engineers for vulnerability management, dependency auditing, and secret leak remediation.
What You Can Do
MCP Tools
list-code-scanning-alerts
List code scanning alerts for a repository
get-code-scanning-alert
Get a code scanning alert
update-code-scanning-alert
Update a code scanning alert (dismiss, reopen)
list-code-scanning-analyses
List code scanning analyses
get-code-scanning-analysis
Get a code scanning analysis
upload-sarif
Upload SARIF analysis data
get-default-setup
Get code scanning default setup configuration
update-default-setup
Update code scanning default setup
list-dependabot-alerts
List Dependabot alerts
get-dependabot-alert
Get a Dependabot alert
update-dependabot-alert
Update a Dependabot alert (dismiss, reopen)
list-dependabot-secrets
List Dependabot secrets
list-secret-scanning-alerts
List secret scanning alerts
get-secret-scanning-alert
Get a secret scanning alert
update-secret-scanning-alert
Update a secret scanning alert (resolve, reopen)
list-secret-scanning-locations
List locations for a secret scanning alert
check-vulnerability-alerts
Check if vulnerability alerts are enabled
enable-vulnerability-alerts
Enable vulnerability alerts
disable-vulnerability-alerts
Disable vulnerability alerts