- GitHub Secret Protection ($19/month per active committer): Helps detect and prevent secret leaks using AI-powered detection, push protection, secret scanning, and security insights.
- GitHub Code Security ($30/month per active committer): Aims to identify and remediate vulnerabilities faster with code scanning, Copilot Autofix, security campaigns, and Dependency Review Action.
The move is designed to enhance accessibility, affordability, and scalability for organisations of all sizes. Importantly, GitHub Team plan customers can now purchase these security tools independently, without needing a full Enterprise plan.
Why This Matters :
GitHub’s decision to offer standalone security solutions responds to customer demand for purchasing flexibility and cost efficiency. The company highlights three key benefits:
- More flexibility: Organisations can adopt Secret Protection or Code Security independently, tailoring security to their specific needs.
- Greater accessibility: Enterprise-grade security tools are now available to GitHub Team plan customers, reducing barriers to adoption.
- Cost efficiency: Metered billing ensures teams pay only for what they use, without long-term commitments.
Katie Norton, Research Manager at IDC, praised the shift, stating, “With the introduction of Secret Protection and Code Security as separate products with a flexible pricing model, GitHub is broadening access to security tools designed for enterprise use in complex, large-scale development environments.”
Free Secret Risk Assessment Tool
In addition, GitHub is launching a free secret risk assessment tool on April 1, 2025. Available in the Security tab, this tool will help organisations analyse their secret leak exposure and take proactive steps to secure their environments.With this move, GitHub is reinforcing its commitment to improving security in software development while making its advanced security features more accessible to a wider range of businesses.
thank you