Posts by

Edward Thomson

GitHub Advisory Database now powers npm audit

Today, we’re adding a proxy on top of the GitHub Advisory Database that speaks the `npm audit` protocol. This means that every version of the npm CLI that supports security audits is now talking directly to the GitHub Advisory Database.

October 7, 2021

Product

The npm registry is deprecating TLS 1.0 and TLS 1.1

Beginning October 4, 2021, all connections to npm websites and the npm registry, including for package installation, must use TLS 1.2 or higher.

August 23, 2021

Product

A thousand community-powered workflows using GitHub Actions

Celebrate a GitHub Action's milestone with highlights of a few key actions and a technology partner's work.

November 6, 2019

Edward Thomson

GitHub Advisory Database now powers npm audit

The npm registry is deprecating TLS 1.0 and TLS 1.1

A thousand community-powered workflows using GitHub Actions

Subscribe to The GitHub Insider