GitHub Announces Changes to GitHub Advanced Security (GHAS) with New Standalone Products

GitHub has revealed significant updates to GitHub Advanced Security (GHAS), its AI-powered solution for application security. Starting April 1, GHAS will be split into two separate products, each available as standalone options, providing more flexibility for users to address specific security needs. These products will focus on secret protection and code security.

New Standalone Products

1. GitHub Secret Protection
   GitHub Secret Protection aims to prevent secret leaks by scanning and detecting secrets using AI-powered technology. This feature helps ensure that sensitive information like API keys and passwords aren’t accidentally exposed in the code.
2. GitHub Code Security
   GitHub Code Security focuses on identifying and remediating vulnerabilities in code. It offers several advanced security features such as code scanning, Copilot Autofix, security campaigns, and Dependency Review Action, all aimed at enhancing code security across projects.

Flexible Pricing and Broader Access

The pricing for these two new products will be:

• GitHub Secret Protection: $19 per month per active committer
• GitHub Code Security: $30 per month per active committer

Previously, GitHub Advanced Security was only available as an add-on for GitHub Enterprise customers, the platform’s highest-tier plan that starts at $21 per month per user. With these changes, GitHub Team subscribers, starting at $4 per month per user, will now be able to purchase these products separately, expanding access to advanced security tools for a wider range of organizations.