2022

A comprehensive guide for vulnerability reporters.

Today, we’re shipping improvements to Dependabot alerts that make them easier to understand and remediate.

Here’s January’s top staff picks on projects that shipped major version releases.

In January, we experienced no incidents resulting in service downtime to our core services.

A quick guide on the advantages of using GitHub Actions as your preferred CI/CD tool—and how to build a CI/CD pipeline with it.

Along with the release of sponsors-only repositories, here’s a look at what’s new and what’s next for Sponsors.

A deep dive into how GitHub adds support for new languages to CodeQL.

Starting today, we are rolling out mandatory 2FA to all maintainers of top-100 npm packages by dependents.

The dependency graph helps developers and maintainers understand the code they depend on, and now includes GitHub Actions!

In GitHub’s latest transparency report, we’re giving you a by-the-numbers look at how we responded to requests for user info and content removal.

When it comes to secure database access, there’s more to consider than SQL injections. OWASP Top 10 Proactive Control C3 offers guidance.

Learn new skills, build projects and meet like-minded students with the latest shows from the GitHub Education Stream Team.

GitHub continues to improve account security and developer experience with a new 2FA mechanism in GitHub Mobile on iOS and Android.

The open source Git project just released Git 2.35. Here’s GitHub’s look at some of the most interesting features and changes introduced since last time.

Our community has been hard at work through December shipping updates. Here’s our staff picks for open source projects with major version releases.