Yes. GitHub Advanced Security is available as an customer stories to learn how customers like security features like code scanning, secret scanning, and supply chain security tools at no charge for use with public repositories.

"}},{"@type":"Question","name":"What is the GitHub Security Lab?","acceptedAnswer":{"@type":"Answer","text":"

The GitHub Security Lab is a team of security experts who cultivate a collaborative community where developers and security professionals come together to help secure open source software. Our mission: make open source software secure and reliable for the benefit of developers everywhere through collaboration and contributions from maintainers, developers, and security researchers around the world.

"}},{"@type":"Question","name":"What is the Advisory Database, and how is it different from a CVE?","acceptedAnswer":{"@type":"Answer","text":"

Common Vulnerabilities and Exposures (CVE) is a database of publicly disclosed information about security issues, with a unique number to identify each vulnerability. But while CVEs document vulnerabilities, they don’t tell the whole story. Unlike a CVE, entries in the GitHub Advisory Database contain additional context and remediation guidance – sourced from a global community of security experts and curated by the GitHub Security Lab – to help developers and security teams understand vulnerabilities, assess risk, and fix with confidence.

"}},{"@type":"Question","name":"How can I manage and secure open source dependencies?","acceptedAnswer":{"@type":"Answer","text":"

GitHub provides extensive Dependabot quickstart guide is a great place to begin.

"}},{"@type":"Question","name":"Where can I learn more about the security of the GitHub platform?","acceptedAnswer":{"@type":"Answer","text":"

Visit the GitHub Trust Center to learn more about security, privacy, compliance, and transparency.

"}}]}