2022

We’re releasing exciting improvements that will streamline your Codespaces experience when working with multi-repository projects and monorepos.

Introducing CodeQL packs to help you codify and share your knowledge of vulnerabilities.

Another new release of Git is here! Take a look at some of our highlights on what’s new in Git 2.36.

On April 12, GitHub Security began an investigation that uncovered evidence that an attacker abused stolen OAuth user tokens issued to two third-party OAuth integrators, Heroku and Travis-CI, to download data from dozens of organizations, including npm. Read on to learn more about the impact to GitHub, npm, and our users.

Upgrade your local installation of Git, especially if you are using Git for Windows, or you use Git on a multi-user machine.

Today, we’re excited to bring you a few new features that will help you communicate, collaborate, and connect seamlessly with teams and communities about the software you’re building with the help of GitHub Discussions.

How we sped up GitHub.com by moving slow, non-critical code into rack.after_reply.

Each month, we highlight open source projects that have shipped major updates. These include everything from world-changing technology to developer tooling, and weekend projects. Here are our top staff picks…

Ensuring secure access to your source code is more important than ever. Git Credential Manager helps make that easy.

Learn how to build packages with SLSA 3 provenance using GitHub Actions.

In March, we experienced several incidents resulting in significant impact to multiple GitHub services.

The new dependency review action and API prevents the introduction of known supply chain vulnerabilities into your code.

We want to take away the pain and effort of keeping your code secure, so check out how Dependabot empowers developers to keep to their projects secure.

From automating builds and releases to taking care of large-scale regression testing, here are a few ways we use GitHub Actions to build GitHub.

Organizations with GitHub Advanced Security can now proactively protect against secret leaks with secret scanning’s new push protection feature.