Trying to determine if we have GH Advanced Security enabled

[Rod-at-DOH]

Select Topic Area

Question

Body

This is a noobie question, I'm sorry. I'm one of the GitHub Administrators. We have a GitHub.com Enterprise license, with two GitHub Organizations. I'm looking at our Billing and Licensing page and see the Metered usage. I also see these products: Actions, Codespaces, Git LTS, Models, Packages, and Spark. Most I know, with the exception of Spark. But I'm not clear if GitHub Advanced Security should be in that list or not. How can I tell if we have GHAS enabled?

[pratikrath126]

As an Enterprise admin, you can check GHAS status in two places: 1) Org Settings → Security & analysis - if GHAS is enabled you'll see toggles for Code scanning, Secret scanning, etc. 2) Billing & Licensing page - look for a 'GitHub Advanced Security' section showing allocated seats and usage. If it's not listed, contact your GitHub account team to confirm GHAS is included in your enterprise license.

[MasteraSnackin]

You check GHAS at three levels:

Enterprise: In your enterprise Billing & Licensing, look for a separate entry for “GitHub Advanced Security” (or “Code Security” / “Secret Protection”). If it’s not listed, you don’t have GHAS on your license.

Organisation: In Enterprise settings → Policies → Code security, confirm Advanced Security is allowed for the organisations you care about; an enterprise policy can block it even if you’re licensed.

Repository: In each repo’s Settings → Security & analysis / Advanced Security, check whether Advanced Security features (code scanning, secret scanning, etc.) are available and marked as enabled; if you see an error saying Advanced Security must be enabled, it’s not active for that repo.

“Spark” on the Metered usage page is a separate AI‑apps product and has nothing to do with whether GHAS is enabled.