Skip to content

GitHub Advanced Security Jobs Fail to Start - Account Locked Due to Billing #379

New issue
New issue
Open
Open
GitHub Advanced Security Jobs Fail to Start - Account Locked Due to Billing#379
@laserjobs

Description

@laserjobs
laserjobs
opened on Sep 28, 2025

Describe the bug
The GitHub Advanced Security analysis jobs (specifically "Analyze (python)" and "Analyze (actions)") failed to start, reporting that the GitHub account is locked due to a billing issue. This prevents crucial security scanning from being performed on the repository.

To Reproduce
Steps to reproduce the behavior:

  1. Precondition: Ensure the GitHub account linked to this repository is in a "locked due to billing" state.
  2. Push a commit to the main branch of this repository (or trigger a workflow run that utilizes GitHub Advanced Security).
  3. Observe the github-advanced-security[bot] status check for the latest commit failing in the Actions tab.
  4. Open the failed workflow run (e.g., "Analyze (python)" or "Analyze (actions)").
  5. See the error message in the job logs.

Expected behavior
Ideally, when a GitHub account is locked due to billing and impacts GitHub Advanced Security:

  • Proactive Warning: GitHub should provide a clear, prominent warning in the repository settings or Actions tab before a workflow run even attempts to execute Advanced Security scans, indicating the account lock.
  • Actionable Error Message: If an Advanced Security job attempts to run, the error message in the workflow logs should clearly state the issue and, critically, provide a direct link to the billing portal or customer support to resolve the account lock.
  • Graceful Handling: The security analysis workflow should gracefully indicate its inability to run without displaying a generic "job not started" message, perhaps with a more specific GitHub-level error.

Screenshots

Environment

  • Repository: /twitter/communitynotes
  • GitHub Actions: Workflow triggered by commit 16ce621 on main branch.
  • GitHub Advanced Security: Python and Actions analysis jobs.
  • Time of incident: Approximately 3 days ago from current date (as per bot message).

Additional context
This issue directly impacts the ability to perform crucial security scanning on the repository using GitHub Advanced Security features. While the root cause is external (a billing issue with the GitHub account), the way this is communicated and handled within GitHub Actions (specifically for Advanced Security) could be improved to provide better user guidance and reduce uncertainty regarding the security posture of the repository.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions