> ## Documentation Index > Fetch the complete documentation index at: https://bloodhound.specterops.io/llms.txt > Use this file to discover all available pages before exploring further. # GH_SecretScanningAlert > A GitHub Advanced Security alert indicating a secret was accidentally committed to a repository Applies to BloodHound Enterprise and CE Represents a GitHub secret scanning alert detected in a repository. Secret scanning alerts are raised when GitHub detects a known secret pattern (such as an API key, token, or credential) committed to a repository. The alert captures the secret type, validity status, and current resolution state. ## Edges The tables below list edges defined by the GitHub extension only. Additional edges to or from this node may be created by other extensions. ### Inbound Edges | Edge Type | Source Node Types | Traversable | | -------------------------------------------------------------------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------- | | [GH\_CanReadSecretScanningAlert](/opengraph/extensions/github/edges/gh_canreadsecretscanningalert) | [GH\_OrgRole](/opengraph/extensions/github/nodes/gh_orgrole), [GH\_RepoRole](/opengraph/extensions/github/nodes/gh_reporole) | ✅ | | [GH\_Contains](/opengraph/extensions/github/edges/gh_contains) | [GH\_Organization](/opengraph/extensions/github/nodes/gh_organization), [GH\_Repository](/opengraph/extensions/github/nodes/gh_repository), [GH\_Environment](/opengraph/extensions/github/nodes/gh_environment) | ❌ | ### Outbound Edges | Edge Type | Destination Node Types | Traversable | | ------------------------------------------------------------------ | ------------------------------------------------------ | ----------- | | [GH\_ValidToken](/opengraph/extensions/github/edges/gh_validtoken) | [GH\_User](/opengraph/extensions/github/nodes/gh_user) | ✅ | ## Properties | Property Name | Data Type | Description | | --------------------------- | --------- | ---------------------------------------------------------------------------------------------- | | objectid | string | A deterministic Base64-encoded ID derived from the organization, repository, and alert number. | | id | string | Same as objectid. | | name | string | The alert number. | | repository\_name | string | The name of the repository where the secret was detected. | | repository\_id | string | The node\_id of the repository. | | repository\_url | string | The HTML URL of the repository. | | secret\_type | string | The type of secret detected (e.g., `github_personal_access_token`, `aws_access_key_id`). | | secret\_type\_display\_name | string | A human-readable name for the secret type. | | validity | string | The validity status of the detected secret (e.g., `active`, `inactive`, `unknown`). | | state | string | The alert state (e.g., `open`, `resolved`). | | created\_at | datetime | When the alert was created. | | updated\_at | datetime | When the alert was last updated. | | url | string | The HTML URL to view the alert on GitHub. | ## Diagram ```mermaid theme={null} flowchart TD GH_Repository[fa:fa-box-archive GH_Repository] GH_SecretScanningAlert[fa:fa-key GH_SecretScanningAlert] GH_User[fa:fa-user GH_User] GH_OrgRole[fa:fa-user-tie GH_OrgRole] GH_RepoRole[fa:fa-user-tie GH_RepoRole] GH_Repository -.->|GH_Contains| GH_SecretScanningAlert GH_SecretScanningAlert -->|GH_ValidToken| GH_User GH_OrgRole -->|GH_CanReadSecretScanningAlert| GH_SecretScanningAlert GH_RepoRole -->|GH_CanReadSecretScanningAlert| GH_SecretScanningAlert ```