Question 134

### Which of the following best describes GitHub secret scanning? > **More info**: [About secret scanning](https://docs.github.com/en/code-security/secret-scanning/about-secret-scanning) 1. [ ] A feature that scans issues for unverified credentials and deletes them automatically. > Secret scanning doesn't automatically delete anything; it detects potentially leaked secrets. 1. [ ] A feature that encrypts your repository secrets before pushing them to GitHub. > GitHub Actions Encrypted Secrets handle encryption, but that’s different from secret scanning. 1. [ ] A feature that runs third-party password managers on your code to store secrets securely. 1. [x] A feature that searches repositories for known secret formats to prevent accidental exposure of sensitive data. > **Correct**. Secret scanning detects tokens, keys, and other credentials to help avoid leaks.