Product

Featured

April 22, 2021

Features

GitHub Actions update: Helping maintainers combat bad actors

Chris Patterson

April 15, 2021

Client apps

Work with GitHub Actions in your terminal with GitHub CLI

Nate Smith

All "Product" posts

April 22, 2021

GitHub Actions update: Helping maintainers combat bad actors

GitHub Actions is a powerful, flexible CI/CD service that gives developers the ability to automate all of their software workflows. Developers have built amazing things with GitHub Actions, and the CI/CD service has dramatically accelerated

Chris Patterson

April 15, 2021

Work with GitHub Actions in your terminal with GitHub CLI

gh brings GitHub to the command line by helping developers manage pull requests, issues, gists, and much more. As of 1.9.0, even more of GitHub is available in your terminal: GitHub Actions. It’s already possible

Nate Smith

April 13, 2021

Implementing least privilege for secrets in GitHub Actions

GitHub Actions provide a powerful, extensible way to automate software development workflows. When access to outside resources is required, GitHub provides the ability to store encrypted secrets used by GitHub Actions to authenticate against these

Philip Holleran

April 5, 2021

Behind GitHub’s new authentication token formats

We’re excited to share a deep dive into how our new authentication token formats are built and how these improvements are keeping your tokens more secure. As we continue to focus on the security of

Heather Harvey

March 30, 2021

Client apps

Introducing new push notifications, scheduling, releases and more on GitHub Mobile

GitHub Mobile helps you get work done when you’re on the go, wherever you go. You’ve told us that you’d like more options for push notifications and viewing releases on mobile, but also want more

Candy Ho

March 30, 2021

GitHub Desktop now supports cherry-picking

GitHub Desktop aims to provide an intuitive way for users to complete everyday Git and GitHub workflows. One of our most requested features from the past year is cherry-picking, and we’re excited to release it

Rebecca Hovemeyer

March 30, 2021

Security

GitHub Advanced Security: Introducing security overview beta and general availability of secret scanning for private repositories

GitHub Advanced Security helps you create secure applications with a community-driven, developer-first approach. Today, we are excited to announce two updates: Beta of the new security overview for organizations and teams, which provides a high-level

William Bartholomew

March 24, 2021

Security

One day short of a full chain: Real world exploit chains explained

When it comes to security research, the path from bug to vulnerability to exploit can be a long one. Security researchers often end their research journey at the “Proof of Concept” (PoC) stage. A PoC

Man Yue Mo

March 22, 2021

GitHub Capture the Flag results

Earlier this month, we challenged you to a Call to Hacktion—a CTF (Capture the Flag) competition to put your GitHub Workflow security skills to the test. Participants were invited to find a vulnerability in a

Bas Alberts

March 18, 2021

How we found and fixed a rare race condition in our session handling

On March 8, we shared that, out of an abundance of caution, we logged all users out of GitHub.com due to a rare security vulnerability. We believe that transparency is key in earning and keeping

Dirkjan Bussink

View more posts