Innersource is the practice of creating reusable code for the purpose of sharing within the boundaries of an organization. Learn tips for solving the “discovery problem." | Continue reading
In order to support our projected growth, we're introducing a new Global ID format and a roll out plan that brings it to our GraphQL API this year. | Continue reading
Nearly 350 players from across the GitHub community participated in our 5th Capture the Flag, with 54 players solving the game in the allotted time frame. | Continue reading
This article originally appeared in The New Stack, and is republished here with permission. Digital sovereignty has become a rallying cry across the globe. In 2021, open innovation will, counterintuitively, provide the answer. Politicians and | Continue reading
On March 8, out of an abundance of caution, we logged all users out of GitHub.com. In this post we share technical details of the vulnerability and steps we're taking to ensure it doesn't happen again. | Continue reading
Understanding the movement of ‘single source’ companies from ‘open source’ to ‘source available’ licenses. | Continue reading
Last month, a member of the CodeQL security community contributed multiple CodeQL queries for C# codebases that can help organizations assess whether they are affected by the SolarWinds nation-state attack on various parts of critical | Continue reading
GitHub has done a lot of work in the last six months to improve performance for large monorepos. | Continue reading
Security research makes us all safer, but too often developers face ambiguous rules and possible criminal liability when they do quality assurance work to find security holes in their stack. Current DMCA Section 1201 rules | Continue reading
The open source Git project just released Git 2.31. Join us in taking a look at some of the most interesting features and changes. | Continue reading
Dependabot can now update dependencies from private registries and private GitHub repositories. | Continue reading
To celebrate one year since launching CLI, we're sharing some ways you can customize and build on top of the `gh` command. | Continue reading
GitHub and Algorithmia talk about the current state of MLOps (machine learning operations) and what companies should consider as part of their own machine learning workflows. | Continue reading
Declaring productivity is easy. Measuring productivity at scale is hard. The SPACE framework developed by GitHub's Nicole Forsgren and colleagues addresses this challenge. | Continue reading
Private repositories can now enable Discussions under “Features” in the repository settings. | Continue reading
Today, the Git project released new versions to address CVE-2021-21300: a security vulnerability in the delayed checkout mechanism used by Git LFS during git clone operations affecting versions 2.15 and newer. | Continue reading
Today, the Git project released new versions to address CVE-2021-21300: a security vulnerability in the delayed checkout mechanism used by Git LFS during git clone operations affecting versions 2.15 and newer. | Continue reading
On the evening of March 8, we invalidated all authenticated sessions on GitHub.com created prior to 12:03 UTC on March 8 out of an abundance of caution. | Continue reading
Hosts Nigel, Pierluigi, and Shawn share what to expect from Security Week at InFocus, from using open source securely to achieving DevSecOps. | Continue reading
Here are the latest and greatest releases from our community this February. Drop your code for a minute, grab a cuppa, and read up on these projects. | Continue reading
GitHub Actions empowers your team to go from code to cloud from the comfort of your repositories. @bdougie walks through some DevOps examples. | Continue reading
In February, we experienced no incidents resulting in service downtime to our core services. This month’s report will provide initial details around an incident from March 1 | Continue reading
In January 2020, the World Health Organization (WHO) declared a state of emergency. Even before the novel coronavirus had an official name, it set off global travel restrictions, widespread closures, and a near-instant shift in | Continue reading
Save the date for GitHub Security Lab's fifth Capture the Flag event starting March 17! | Continue reading
A Q&A on what to expect, from CI/CD to DevSecOps, at this week's GitHub InFocus, with virtual hosts Jennie, Marko, and Daniel. | Continue reading
The story of how GitHub Security Lab discovered an exploitable bug in OpenSSL that was patched while a researcher was working on it. This bug is present in non-security related areas of the code, so we’re looking to work with the maintainers of OpenSSL to fix these instances of t … | Continue reading
We're committed to minimizing disruption of software projects, protecting developer privacy, and being transparent about information disclosure. | Continue reading
Mike Hanley joins GitHub as our new Chief Security Officer! | Continue reading
To honor Black History Month, we've shared stories on The ReadME Project highlighting Black developers, open source leaders, and those fighting inequity. | Continue reading
Are you a student developer looking to land an internship? We talked with Co.Lab Co-Founder Helen Huang on GitHub Campus TV about how to break into tech. | Continue reading
As technology transforms the global economy, Dr. Bernice King strives to ensure new economic opportunities are available to all—including the Black community. | Continue reading
The NTIA has requested suggestions for a challenge to accelerate development of the open 5G stack ecosystem. GitHub's submission emphasizes open source best practices. | Continue reading
GitHub InFocus is a global virtual series for software teams. Each week features a new topic—developer experience, DevOps, or security—and three new hosts. | Continue reading
Adobe and American Express join the MLH Fellowship to level-up student developers around the globe. | Continue reading
GitHub Campus TV serves as the front door to your career as a professional software developer. Level up your coding skills with our workshops. | Continue reading
Supply chain attacks are a reality in modern software development, but you can reduce attack surface by taking precautions and managing dependencies. | Continue reading
Redesigning GitHub's homepage required more than a visual refresh—we had to fundamentally reimagine the story we wanted to share. | Continue reading
In order to support our projected growth, we're introducing a new Global ID format and a roll out plan that brings it to our GraphQL API this year. | Continue reading
Security Advisories and GitHub Advisory Database now include Common Weakness Enumeration (CWE) and Common Vulnerability Scoring System (CVSS) information for advisories. | Continue reading
The January Release Radar is here. This is out top picks from the latest and greatest community projects. Everything from V1 to V7! | Continue reading
Turning operational processes into code is the next step in the adoption of “You build it, you run it” principle, and guaranteeing meeting the SLOs. | Continue reading
Our changes to the Technology Partner Program simplify the application verification process, increase your revenue, and make it easier to build on GitHub. | Continue reading
In the fourth installment of our five-part series on building GitHub’s new homepage, we’ll explore the artistic pipeline at GitHub to explain story, character and color, and to show how we collaborate across teams to | Continue reading
Now that things have settled down from the move to Rackspace, I wanted to take some time to go over the architectural changes that we’ve made in order to bring you a speedier, more scalable | Continue reading
In 2020, GitHub advised policymakers, supported legal action, and spoke directly to developers on policy in jurisdictions around the world. | Continue reading
Last week, we described how we improved the deployment experience for github.com. When we describe deployments at GitHub, the deployment experience is an important part of what it takes to ship applications to production, especially at GitHub's scale, but there is more to it: the … | Continue reading
In January, we experienced one incident resulting in significant impact and degraded state of availability for the GitHub Actions service. | Continue reading
Expanded support for video uploads | Continue reading