During a time when computers were solely used for computation, the engineer, Douglas Engelbart, gave the “mother of all demos,” where he reframed the computer as a collaboration tool capable of solving humanity’s most complex problems. At the start of his demo, he asked audience … | Continue reading
We recently walked through practical ways that you can start meeting compliance requirements without having to transform the culture in your company—all while enabling developers to stay in the flow. In this post, we focus on ensuring systemic compliance with regulatory framework … | Continue reading
In November 2022 we announced GitHub Accelerator, an exploration into what sustainable open source could look like. GitHub Accelerator is a 10-week program where open source maintainers receive an initial sponsorship of $20K to work on their project, paired with guidance and work … | Continue reading
Millions of developers around the world use GitHub every day. The GitHub platform has grown into a multifaceted, comprehensive tool that developers and businesses use to tinker, build, and research the next great innovation. GitHub brings people together—from students to CEOs—and … | Continue reading
In our recent blog post announcing GitHub Copilot X, we mentioned that generative AI represents the future of software development. This amazing technology will enable developers to stay in the flow while helping enterprises meet their business goals. But as we have also mentione … | Continue reading
Developers who feel more satisfied in their jobs are better positioned to be more productive. We also know developers can gain a sense of fulfillment by making an impact beyond the walls of their company and elevating their community. An opportunity exists, which developers can m … | Continue reading
By now, you’ve heard of generative artificial intelligence (AI) tools like ChatGPT, DALL-E, and GitHub Copilot, among others. They’re gaining widespread interest thanks to the fact that they allow anyone to create content from email subject lines to code functions to artwork in a … | Continue reading
Game Bytes is our monthly series taking a peek at the world of gamedev on GitHub—featuring game engine updates, game jam details, open source games, mods, maps, and more. Game on! Engine Watch The wait is over—Godot 4.0 is here https://github.blog/wp-content/uploads/2023/04/g … | Continue reading
Since the beginning, GitHub.com has been a Ruby on Rails monolith. Today, the application is nearly two million lines of code and more than 1,000 engineers collaborate on it daily. We deploy as often as 20 times a day, and nearly every week one of those deploys is a Rails upgrade … | Continue reading
In this post, I’ll look at a security-related change in version r40p0 of the Arm Mali driver that was AWOL in the January update of the Pixel bulletin, where other patches from r40p0 was applied, and how these two lines of changes can be exploited to gain arbitrary kernel code ex … | Continue reading
GitHub Enterprise is a fundamental part of the software development lifecycle with features that enable administrators and users to work seamlessly together. In December 2022, we announced that enterprise accounts are coming to all GitHub Enterprise customers in a phased roll-out … | Continue reading
In March, we experienced six incidents that resulted in degraded performance across GitHub services. This report also sheds light into a February incident that resulted in degraded performance for GitHub Codespaces. February 28 15:42 UTC (lasting 1 hour and 26 minutes) On Februar … | Continue reading
Many of us are aware of the benefits that a strong focus on automation can bring, particularly in our development workflow and DevOps lifecycle. But silos across businesses can lead to duplication of effort, and potential to lose out on best practices. In this post, we’ll explore … | Continue reading
Today, we’re pleased to announce that GitHub Sponsors is now generally available for organization-funded sponsorships. We’re also sharing updates on how we’re ensuring the sustainability of the program through new fees and launching a new feature for sponsoring in bulk. The world … | Continue reading
GitHub runs on trust GitHub is the software development platform trusted by millions of developers. With this trust comes a responsibility to constantly improve our security, audit, and compliance solutions with the developer in mind. A high-quality audit log is an essential tool … | Continue reading
Every day millions of people interact with open source software. But despite its reach, the people behind the software—the ones powering our digital world—don’t always have the community or support they need. To help with this, we are building a private space for maintainers to c … | Continue reading
Static analysis (static code analysis or static program analysis) is a process that allows you to analyze an application’s code for potential errors without executing the code itself. The technique can be used to perform various checks, verification, and to highlight issues in th … | Continue reading
We’ve recently made some changes to CodeQL’s data flow and taint tracking libraries for C++, which will improve the experience for custom query authors and enable better precision in some of our standard queries. While these changes are included in the standard queries already, y … | Continue reading
Following the precedent set by Executive Order 14028, security and compliance teams increasingly request software bills of materials (SBOMs) to identify the open source components of their software projects, assess their vulnerability to emerging threats, and verify alignment wit … | Continue reading
Throughout my career, I’ve had the opportunity to work with customers all over the stack, from cloud-native early adopters to those who are just beginning their journey. In my experience, one thing is true for all businesses regardless of their size: no organization can grow, thr … | Continue reading
Today, we’re excited to announce the release of the public beta of the official GitHub Actions VS Code extension. The extension provides support for authoring and editing workflows and helps you manage workflow runs without leaving your IDE. The extension was originally started a … | Continue reading
At approximately 05:00 UTC on March 24, out of an abundance of caution, we replaced our RSA SSH host key used to secure Git operations for GitHub.com. We did this to protect our users from any chance of an adversary impersonating GitHub or eavesdropping on their Git operations ov … | Continue reading
Fixing security-related issues in code is a different kind of problem solving, and we often see developers introducing more problems as they try to fix these issues. I understand this because I was once one of those developers. When I started to learn how to write functional code … | Continue reading
At GitHub, our mission has always been to innovate ahead of the curve and give developers everything they need to be happier and more productive in a world powered by software. When we began experimenting with large language models several years ago, it quickly became clear that … | Continue reading
Policymakers in the EU are working on a new regulation to improve cybersecurity. Proposed by the European Commission last year, the Cyber Resilience Act will allocate responsibility for shipping and maintaining secure software products to the companies that sell them, but its cur … | Continue reading
The wait is over. Godot 4.0—the cross-platform, free and open source game engine—is now generally available! From its humble beginnings to its rise to one of the fastest-growing projects on GitHub it’s been an absolute joy watching this project mature and the community grow. With … | Continue reading
At GitHub you’ve heard us talk about how we are using GitHub Projects and GitHub Actions to plan and track our work and now we’ve asked one of our customers, Grafana Labs, to share how their teams are approaching work in a new way. Whether they are managing open source requests, … | Continue reading
As a person with a disability, I am intimately familiar with the constant need to overcome barriers in almost every aspect of life. For good or ill, it generates creativity, tenacity, and ingenuity—all very useful traits for developers. Today, I am very excited to introduce you t … | Continue reading
The open source Git project just released Git 2.40 with features and bug fixes from over 88 contributors, 30 of them new. We last caught up with you on the latest in Git when 2.39 was released. To celebrate this most recent release, here’s GitHub’s look at some of the most intere … | Continue reading
Hello fellow open source enthusiasts! We are thrilled to announce the release of an open source repository to help organizations build up their own Open Source Program Office (OSPO), github-ospo! For those who are unfamiliar with the term, an OSPO is a dedicated team or individua … | Continue reading
The GitHub Social Impact, Tech for Social Good team is excited to announce our new Activating Developers initiative with the long-term goal to empower 50,000 more GitHub users to contribute to social good projects on the platform! In the coming year, we will be launching new prog … | Continue reading
GitHub Advanced Security (GHAS) is a developer-first application security solution from GitHub. Included in GHAS is the security overview, a dashboard that provides a birds-eye view of your security coverage, as well as the capability to identify and drill down into repositories … | Continue reading
We shared our thinking on the importance of Section 230’s protections for developers and innovation with TechCrunch–you can read the full article below. Last week marked the first time the U.S. Supreme Court reviewed Section 230 of the Communications Decency Act of 1996. In oral … | Continue reading
We’re living in a world where software and hardware are ubiquitous—even more than you might initially think! When you think of hardware, what’s the first thing that comes to mind? Your phone? Your laptop? What about your washing machine or car? Or, one of the many smart home devi … | Continue reading
Last year, we announced our commitment to require all developers who contribute code on GitHub.com to enable two-factor authentication (2FA) by the end of 2023. GitHub is central to the software supply chain, and securing the software supply chain starts with the developer. Our 2 … | Continue reading
Until recently, the site-search on GitHub Docs was an in-memory solution. While it was a great starting point, we ultimately needed a solution that would scale with our growing needs, so we rewrote it in Elasticsearch. In this blog post, we share how the implementation works and … | Continue reading
The security community identifies new vulnerabilities at an astonishing rate and helps developers all over the world secure their code. GitHub is actively facilitating this collaboration with tools like private vulnerability reporting and the GitHub Advisory Database. Today, we’r … | Continue reading
With the interconnectedness of modern software and the different types of code, you’ll often need to use numerous application security tools, each purpose-built to detect a specific kind of risk from a specific portion of your software. When integrating multiple tools into your w … | Continue reading
We’re excited to announce that from March 28-31, we’ll be hosting GitHub Galaxy, our virtual global enterprise event designed to help you supercharge developer productivity and transform your business. How does developer productivity impact businesses at large? Well, let’s take a … | Continue reading
GitHub Enterprise Server 3.8 is now generally available. This release continues our investment in bringing more features to our GitHub Enterprise Server (GHES) customers, whilst also delivering improvements for managing the GitHub Enterprise Server appliance itself. Here are a fe … | Continue reading
Pull requests are at the heart of GitHub. They represent the spirit of contributions and are essential to creating and growing communities. On the GitHub Mobile team, one of our missions is to bring your code to you–whenever you are. In the last few months, we’ve brought file edi … | Continue reading
Are you a student ready to take your skills to the next level? Well, look no further! Today, we’re launching the new GitHub Octernships program: work with companies across the globe, receive mentorship, and enhance job prospects as you turn your passion for software development i … | Continue reading
When I started my first role as a software engineer, I remember taking about four days to set up my local development environment. I had so many issues with missing dependencies, incorrect versions, and failed installations. When I finally finished setting up all the tools and so … | Continue reading
Our community—along with ourselves—took a much needed break over the festive season. Now everyone is back into the full swing of work, and the open source community is showing us it’s all hands on deck. We had dozens of submissions for the February Release Radar—a testament to th … | Continue reading
At GitHub, we really care about open source security and love to help maintainers to secure their code. That is indeed the mission of the GitHub Security Lab. As users of open source software (OSS), we also love to contribute back to the community by helping improve the security … | Continue reading
In GitHub Desktop 3.1, we introduced viewing the diff of changes across multiple commits. This allows you to be certain there are no unintended changes in the group of commits you are about to push. Taking that feature to the next level, GitHub Desktop 3.2 allows you to “Preview … | Continue reading
SCALE (Southern California Linux Expo) is the largest community-run open-source and free software conference in North America. It takes place next week in Pasadena from March 9-12, 2023 and we’ll be there! We’d love you to stop by the GitHub booth! Say hello, ask questions about … | Continue reading
Which programming language has been around for more than three decades and continues to grow in popularity each year? If you guessed Python, you nailed it. In the 2022 Octoverse report, we found that Python remains the second most-used programming language on GitHub. Interestingl … | Continue reading