GitHub secret scanning notifications

We're excited to announce that Sentry is now a GitHub Secret Scanning partner.

Here's how it works: if you accidentally commit a Sentry user token or org auth token to a public GitHub repository, or a Gist, GitHub will detect it and notify us. We'll then send you an email alert so you can take immediate action to revoke the exposed token and keep your account secure.

Here is how an email might look:

This is just one more way we're working to help keep your Sentry account safe. If you receive one of these emails, please act quickly to rotate your credentials!

But please, never commit your secrets.

Released: December 30, 2025