Git.io deprecation | Continue reading
This is the first post in a two-part series describing friendly forks and alternative strategies for managing them. Stay tuned for part two coming in May! You may be familiar with the term, friend zone. It typically carries a bit of a negative connotation, as it describes unrequi … | Continue reading
The ZX Spectrum celebrates its 40 years anniversary today. Read more about how the community is still active - creating new content, archiving old content, and hacking on all sorts of hardware. | Continue reading
A CVE is a unique identifier, assigned to a security vulnerability. It’s just a tracking number, intended to make it easy to search for information about the vulnerability. Unfortunately, there are some common misconceptions about CVEs, which we believe are detrimental to progres … | Continue reading
Here’s a confession: As a developer, I don’t always prioritize security when I’m building new code. It’s not that I don’t care about security. At this point, no one needs a primer on why security matters. But actually making sure your code is secure can be a challenge—and writing … | Continue reading
We’re kicking off InFocus, a global virtual event focused on accelerating, securing, and improving the way software development teams work. | Continue reading
At GitHub, we relentlessly pursue performance. Join me now for the tale of how we dropped a P99 time by 95% on code that runs for every single Git push operation. Every time you push to GitHub, we run a set of checks to validate your push before accepting it. If you ever tried to … | Continue reading
Today, we’re releasing exciting improvements that will streamline your Codespaces experience when working with multi-repository projects and monorepos. Codespaces are instant cloud-powered development environments that aim at maximizing your productivity by eliminating set-up tim … | Continue reading
Congratulations! You’ve discovered a security bug in your own code before anyone has exploited it. It’s a big relief. You’ve created a CodeQL query to find other places where this happens and ensure this will never happen again, and you’ve deployed your new query to be run on eve … | Continue reading
Another new release of Git is here! Take a look at some of our highlights on what's new in Git 2.36. | Continue reading
On April 12, GitHub Security began an investigation that uncovered evidence that an attacker abused stolen OAuth user tokens issued to two third-party OAuth integrators, Heroku and Travis-CI, to download data from dozens of organizations, including npm. Read on to learn more abou … | Continue reading
You can now name your fork when creating it | Continue reading
Organization Discussions | Continue reading
Upgrade your local installation of Git, especially if you are using Git for Windows, or you use Git on a multi-user machine. | Continue reading
Today, we’re excited to bring you a few new features that will help you communicate, collaborate, and connect seamlessly with teams and communities about the software you’re building with the help of GitHub Discussions. | Continue reading
How we sped up GitHub.com by moving slow, non-critical code into rack.after_reply. | Continue reading
The March Release Radar features open source projects who shipped major version. There's everything from developer tooling to big libraries | Continue reading
Ensuring secure access to your source code is more important than ever. Git Credential Manager helps make that easy. | Continue reading
Learn how to build packages with SLSA 3 provenance using GitHub Actions. | Continue reading
In March, we experienced a number of incidents that resulted in significant impact and degraded state of availability to some core GitHub services. This blog post includes a detailed follow-up on a series of incidents that occurred due to degraded database stability, and a distin … | Continue reading
The new dependency review action and API prevents the introduction of known supply chain vulnerabilities into your code. | Continue reading
We want to take away the pain and effort of keeping your code secure, so check out how Dependabot empowers developers to keep to their projects secure. | Continue reading
From automating builds and releases to taking care of large-scale regression testing, here are a few ways we use GitHub Actions to build GitHub. | Continue reading
Protect against secret leaks with secret scanning’s new push protection feature. | Continue reading
We want to evaluate how well candidates can code, and we also want to ensure candidates can show their talents in a fair and unbiased manner. | Continue reading
Read about fundamentals, languages, social media, interviewing, and more from GitHub DevRel member. | Continue reading
Since we launched GitHub Copilot into technical preview last year, we’ve been busy learning from the feedback we’ve been receiving as well as expanding the numbers of people with access to the technical preview and the places where you can use it. Today, we are adding our top req … | Continue reading
How to use GitHub to secure the entire process of delivering software, including securing your accounts, code in your supply chain, and your build process. | Continue reading
We’re super fired up for the return of Next.Tech’s developer community competition: Break the Code 2! If you thought the initial Break the Code 1.0 was a one-of-a-kind experience, wait till you see what GitHub Education and Next.Tech have in the works for this latest addition. Ra … | Continue reading
Ignore commits in the blame view (Beta) | Continue reading
Over the past few weeks, we have experienced multiple incidents due to the health of our database. We wanted to share what we know about these incidents while our team continues to address them. | Continue reading
Following organizations | Continue reading
Over the last few months, we’ve made it easier for large organizations to improve the consistency and security of their CI/CD workflows using GitHub Actions. For example, you can create reusable workflows, share actions and reusable workflows within your enterprise, or secure you … | Continue reading
We’re excited to introduce a new beta version of GitHub’s home feed on your dashboard, designed to help developers build community, find inspiration, and celebrate each other’s incredible work. We want to help your work reach an audience that cares about what you do. Whether it’s … | Continue reading
If you're a GHES customer with heavy read traffic on your monorepo, check out the repository cache, especially for CI workloads distributed world-wide. | Continue reading
You can now create a branch to work on an issue directly from the issue page so that it's easier to get started right away. | Continue reading
This post is part six of GitHub Security Lab’s series on the OWASP Top 10 Proactive Controls, where we provide practical guidance for OSS developers on proactively improving your security posture. In this post, I’ll discuss OWASP Proactive Control C5: Validate All Inputs: Input v … | Continue reading
Our community has shipped lots of open source project updates in the last month, here's a few of our staff picks. | Continue reading
We have heard from you and we’re excited to announce that we have added the ability to re-run only the failed jobs or a single job in GitHub Actions. In addition, we have made navigation improvements that enable you to see the full results of previous runs. Why would I want this? … | Continue reading
Removed unencrypted Git protocol and certain SSH keys | Continue reading
We’ve heard from you and are excited to announce improvements for GitHub Enterprise owners that will make managing enterprise accounts easier. To continue empowering enterprise owners to scale their businesses with GitHub, here are a handful of new features to make user and organ … | Continue reading
In February, we experienced one incident resulting in significant impact to multiple GitHub services. | Continue reading
As the global response to the tragedies in Ukraine and other impacted regions continues to evolve, I wanted to share with our community an expansion of the message that I shared earlier this week with our Hubbers. | Continue reading
Explore and understand your overall GitHub-hosted Actions runner capacity with the new runner view. | Continue reading
The ability to prebuild codespaces is entering public beta. Enable fast environment creation times, regardless of the size & complexity of your repos. | Continue reading
In-line with the other categories, workflows in the Security category will be recommended based on a repository's content. | Continue reading