[{"data":1,"prerenderedAt":17},["ShallowReactive",2],{"tag-articles-secret-scanning":3},[4],{"title":5,"description":6,"path":7,"tags":8,"publishedAt":15,"updatedAt":16},"GitHub 158リポを棚卸し、Dependabot・Push Protection・Secret Scanningの現状把握から明日のTODOへ","ある会計ソフトAのソースコード流出事件をきっかけに、自分のGitHubアカウント158リポを一気に棚卸しした記録。gh CLIで全リポのDependabot/Secret Scanning/Push Protectionの有効状況を取得し、Plan A/B/Cの判断軸を整理して明日のTODOまで落とす過程を、API取得スクリプトのCR・空値バグ込みで時系列に残す。","/github-security-audit-prep",[9,10,11,12,13,14],"github","security","dependabot","push-protection","secret-scanning","gh-cli","2026-05-02T00:00:00.000Z",null,1781076376037]