GitHub Security Features Added to Azure DevOps

• Azure DevOps has received support for GitHub features that can help developers produce software that is more secure.
• The added support could reduce the urgency for teams to migrate from Azure DevOps to GitHub, which is expected to supplant Azure DevOps.
• The features are in preview, but costs are incurred.

The hosted Azure DevOps service is getting support for GitHub Advanced Security, which scans code for vulnerabilities, finds and prevents sensitive information in code, and checks for problematic external dependencies. However, GitHub Advanced Security support will not be added to the Azure DevOps Server on-premises software.

Overview and Operation

GitHub Advanced Security is a set of features that help GitHub Enterprise customers (and customers with public repositories) identify and eliminate vulnerabilities in source code. These features are now being offered to Azure DevOps customers; they were previously available only for code maintained in GitHub. The features include the following: