[Improvement]: Clarify that secret scanning and push protection for repos/org can be enabled for forks (#42173)

sophietheking · web-flow · commit d3fc1fb1386c · 2023-09-07T15:04:08.000Z
diff --git a/content/code-security/secret-scanning/about-secret-scanning.md b/content/code-security/secret-scanning/about-secret-scanning.md
@@ -59,6 +59,12 @@ Additionally, {% data variables.product.prodname_secret_scanning %} scans the ti
 
 {% endif %}
 
+{% note %}
+
+**Note:** When you fork a repository with {% data variables.product.prodname_secret_scanning %} or push protection enabled, these features are not enabled by default on the fork. You can enable {% data variables.product.prodname_secret_scanning %} or push protection on the fork the same way you enable them on a standalone repository.
+
+{% endnote %}
+
 {% ifversion fpt or ghec %}
 
 ## About {% data variables.secret-scanning.partner_alerts %}
diff --git a/content/code-security/secret-scanning/push-protection-for-repositories-and-organizations.md b/content/code-security/secret-scanning/push-protection-for-repositories-and-organizations.md
@@ -31,7 +31,7 @@ If a contributor bypasses a push protection block for a secret, {% data variable
 {% ifversion ghec or fpt %}
 {% note %}
 
-**Note:** The github.dev web-based editor doesn't support push protection. For more information about the editor, see "[AUTOTITLE](/codespaces/the-githubdev-web-based-editor)." 
+**Note:** The github.dev web-based editor doesn't support push protection. For more information about the editor, see "[AUTOTITLE](/codespaces/the-githubdev-web-based-editor)."
 
 {% endnote %}
 {% endif %}
@@ -61,6 +61,12 @@ Organization owners, security managers, and repository administrators can also e
 {% ifversion secret-scanning-enterprise-level-api %}
 Enterprise administrators can also enable or disable {% data variables.product.prodname_secret_scanning %} as a push protection for the enterprise via the API. For more information, see "[AUTOTITLE](/rest/enterprise-admin/code-security-and-analysis)" in the REST API documentation.{% endif %}
 
+{% note %}
+
+**Note:** When you fork a repository with {% data variables.product.prodname_secret_scanning %} as a push protection enabled, this is not enabled by default on the fork. You can enable it on the fork the same way you enable it on a standalone repository.
+
+{% endnote %}
+
 {% ifversion secret-scanning-enterprise-level %}
 
 ### Enabling {% data variables.product.prodname_secret_scanning %} as a push protection for your enterprise
