Update permission info for delegated dismissal, supported pattern info - secret scanning (#57714)

courtneycl · Copilot · sophietheking · web-flow · commit d98b37ad264f · 2025-09-30T09:26:47.000Z
Co-authored-by: Copilot &lt;175728472+Copilot@users.noreply.github.com&gt;
Co-authored-by: Sophie &lt;29382425+sophietheking@users.noreply.github.com&gt;
diff --git a/content/code-security/secret-scanning/introduction/supported-secret-scanning-patterns.md b/content/code-security/secret-scanning/introduction/supported-secret-scanning-patterns.md
@@ -51,10 +51,6 @@ This table lists the secrets supported by {% data variables.product.prodname_sec
 
 {% data reusables.secret-scanning.non-provider-patterns-beta %}
 
-{% ifversion secret-scanning-ai-generic-secret-detection %}
-In addition to these generic non-provider patterns, {% data variables.product.prodname_secret_scanning %} uses {% data variables.product.prodname_copilot_short %} to detect generic passwords. For more information, see [AUTOTITLE](/code-security/secret-scanning/copilot-secret-scanning/responsible-ai-generic-secrets).
-{% endif %}
-
 | Provider | Token |
 |----------|:--------------------|
 |  Generic | http_basic_authentication_header |
@@ -66,7 +62,18 @@ In addition to these generic non-provider patterns, {% data variables.product.pr
 |  Generic | postgres_connection_string |
 |  Generic | rsa_private_key |
 
->[!NOTE] Push protection and validity checks are not supported for non-provider patterns.
+>[!NOTE] Validity checks are not supported for non-provider patterns.
+
+{% ifversion secret-scanning-ai-generic-secret-detection %}
+### {% data variables.secret-scanning.copilot-secret-scanning %}
+{% data variables.product.prodname_secret_scanning_caps %} uses {% data variables.product.prodname_copilot_short %} to detect generic passwords. See [AUTOTITLE](/code-security/secret-scanning/copilot-secret-scanning/responsible-ai-generic-secrets).
+
+| Provider | Token |
+|----------|:--------------------|
+|  Generic | password |
+
+>[!NOTE] Push protection and validity checks are not supported for passwords.
+{% endif %}
 
 ### {% ifversion secret-scanning-alert-experimental-list %}Default{% else %}High confidence{% endif %} patterns
 
diff --git a/data/reusables/security/delegated-alert-dismissal-intro.md b/data/reusables/security/delegated-alert-dismissal-intro.md
@@ -4,8 +4,11 @@ Enabling the feature automatically assigns organization owners and security mana
 
 * "Review and manage {% data variables.product.prodname_code_scanning %} alert dismissal requests" permission for {% data variables.product.prodname_code_scanning %}.
 
-* "Review and manage {% data variables.product.prodname_secret_scanning %} alert dismissal requests" permission for {% data variables.product.prodname_secret_scanning %}. This permission can also be applied to custom roles.
+* "Review and manage {% data variables.product.prodname_secret_scanning %} alert dismissal requests" permission for {% data variables.product.prodname_secret_scanning %}. This permission can also be applied to custom roles. Individuals in these custom roles must also have the following permissions, which grant access to alerts in all repositories:
 
+   * "View {% data variables.product.prodname_secret_scanning %} alerts"
+   * "Dismiss or reopen {% data variables.product.prodname_secret_scanning %} alerts"
+  
 For more information about these permissions, see [AUTOTITLE](/organizations/managing-peoples-access-to-your-organization-with-roles/roles-in-an-organization#permissions-for-organization-roles).
 
 To learn more about the security manager role, see [AUTOTITLE](/organizations/managing-peoples-access-to-your-organization-with-roles/managing-security-managers-in-your-organization).
