From c86b6bd95bc9e657a6055b40aa30a86f9ac0b648 Mon Sep 17 00:00:00 2001
From: Sung Jeon <basix@basix.tech>
Date: Fri, 15 May 2026 06:12:54 +0900
Subject: [PATCH 1/4] Secret Scanning: Revise notes on validity and metadata
 checks (#44222)

Co-authored-by: Sharra-writes <sharra-writes@github.com>
Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com>
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
---
 .../secret-security/supported-secret-scanning-patterns.md      | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/content/code-security/reference/secret-security/supported-secret-scanning-patterns.md b/content/code-security/reference/secret-security/supported-secret-scanning-patterns.md
index 5a5e677b4673..c2aa13df6958 100644
--- a/content/code-security/reference/secret-security/supported-secret-scanning-patterns.md
+++ b/content/code-security/reference/secret-security/supported-secret-scanning-patterns.md
@@ -45,7 +45,8 @@ If you use the REST API for {% data variables.product.prodname_secret_scanning %
 | Extended metadata | {% octicon "x" aria-label="Not supported" %} | {% octicon "x" aria-label="Not supported" %} | Some |
 | Base64 format support | {% octicon "x" aria-label="Not supported" %} | {% octicon "x" aria-label="Not supported" %} | Some |
 
->[! NOTE] Validity and extended metadata checks are only available to users with {% data variables.product.prodname_team %} or {% data variables.product.prodname_enterprise %} who enable the feature as part of {% data variables.product.prodname_GH_secret_protection %}.
+> [!NOTE]
+> Validity and extended metadata checks are only available to users with {% data variables.product.prodname_team %} or {% data variables.product.prodname_enterprise %} who enable the feature as part of {% data variables.product.prodname_GH_secret_protection %}.
 
 ## Supported generic patterns
 

From eb42b455787e609dec587f45965f8f261d6de494 Mon Sep 17 00:00:00 2001
From: Matt C <41025489+mcummings128@users.noreply.github.com>
Date: Thu, 14 May 2026 18:34:14 -0400
Subject: [PATCH 2/4] Github Actions: Clarify masking explanation in
 workflow-commands.md (#44224)

Co-authored-by: Sharra-writes <sharra-writes@github.com>
---
 .../reference/workflows-and-actions/workflow-commands.md        | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/content/actions/reference/workflows-and-actions/workflow-commands.md b/content/actions/reference/workflows-and-actions/workflow-commands.md
index e06d3dd3f85f..c4555bb7b54b 100644
--- a/content/actions/reference/workflows-and-actions/workflow-commands.md
+++ b/content/actions/reference/workflows-and-actions/workflow-commands.md
@@ -269,7 +269,7 @@ jobs:
 ::add-mask::{value}
 ```
 
-Masking a value prevents a string or variable from being printed in the log. Each masked word separated by whitespace is replaced with the `*` character. You can use an environment variable or string for the mask's `value`. When you mask a value, it is treated as a secret and will be redacted on the runner. For example, after you mask a value, you won't be able to set that value as an output.
+Masking a value prevents a string or variable from being printed in the log. Each masked word separated by whitespace is replaced with the `*` character. You can use an environment variable or string for the mask's `value`. This must be done once per value per job. When you mask a value, it is treated as a secret and will be redacted on the runner. For example, after you mask a value, you won't be able to set that value as an output.
 
 ### Example: Masking a string
 

From 4eace54f924f7a0616b883b7536f8c53c22abec4 Mon Sep 17 00:00:00 2001
From: Barinderpreet Singh <64461700+knownasnaffy@users.noreply.github.com>
Date: Thu, 14 May 2026 22:41:03 +0000
Subject: [PATCH 3/4] Update link for customizing the agent's firewall (#44225)

Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com>
---
 .../customize-cloud-agent/customize-the-agent-environment.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/content/copilot/how-tos/copilot-on-github/customize-copilot/customize-cloud-agent/customize-the-agent-environment.md b/content/copilot/how-tos/copilot-on-github/customize-copilot/customize-cloud-agent/customize-the-agent-environment.md
index 7d09af6d2980..ccd0dbe9a29a 100644
--- a/content/copilot/how-tos/copilot-on-github/customize-copilot/customize-cloud-agent/customize-the-agent-environment.md
+++ b/content/copilot/how-tos/copilot-on-github/customize-copilot/customize-cloud-agent/customize-the-agent-environment.md
@@ -32,7 +32,7 @@ You can customize {% data variables.product.prodname_copilot_short %}'s developm
 In addition, you can:
 
 * [AUTOTITLE](/copilot/how-tos/copilot-on-github/customize-copilot/customize-cloud-agent/configure-secrets-and-variables)
-* [Disable or customize the agent's firewall](/copilot/customizing-copilot/customizing-or-disabling-the-firewall-for-copilot-cloud-agent).
+* [AUTOTITLE](/copilot/how-tos/use-copilot-agents/cloud-agent/customize-the-agent-firewall).
 
 > [!NOTE]
 > Organization owners can configure the default runner type for {% data variables.copilot.copilot_cloud_agent %} across all repositories in their organization, and choose whether repositories are allowed to override this default. For more information, see [AUTOTITLE](/copilot/how-tos/administer-copilot/manage-for-organization/configure-runner-for-coding-agent).

From d2865fc1bbc7e16cbdee06a1651d2c961fb1b011 Mon Sep 17 00:00:00 2001
From: Marcel Dufol <linusdufe@gmail.com>
Date: Fri, 15 May 2026 05:29:16 +0200
Subject: [PATCH 4/4] docs: fix broken Learn YAML in five minutes link (#44227)
 (#44237)

Co-authored-by: Twitter Bot <bot@twitter-automation.dev>
Co-authored-by: Sharra-writes <sharra-writes@github.com>
---
 .../supply-chain-security/about-the-dependabot-yml-file.md      | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/content/code-security/concepts/supply-chain-security/about-the-dependabot-yml-file.md b/content/code-security/concepts/supply-chain-security/about-the-dependabot-yml-file.md
index 8f08572128c9..23976473d5df 100644
--- a/content/code-security/concepts/supply-chain-security/about-the-dependabot-yml-file.md
+++ b/content/code-security/concepts/supply-chain-security/about-the-dependabot-yml-file.md
@@ -16,7 +16,7 @@ The `dependabot.yml` file is an optional configuration file that gives you fine-
 
 Without a `dependabot.yml` file, {% data variables.product.prodname_dependabot %} can still create security updates for vulnerable dependencies if you've enabled {% data variables.product.prodname_dependabot_security_updates %} in your repository settings. However, you won't receive automated version updates or have control over update schedules and other configuration options.
 
-The `dependabot.yml` file uses YAML syntax. If you're new to YAML and want to learn more, see [Learn YAML in five minutes](https://www.codeproject.com/Articles/1214409/Learn-YAML-in-five-minutes).
+The `dependabot.yml` file uses YAML syntax. If you're new to YAML and want to learn more, see [Learn YAML in five minutes](https://learnxinyminutes.com/yaml/).
 
 > [!NOTE]
 > {% data variables.product.prodname_dependabot_alerts %} are configured in the repository or organization "Settings" tab and not in the `dependabot.yml` file, see [AUTOTITLE](/code-security/dependabot/dependabot-alerts/configuring-dependabot-alerts).