Skip to content




Introducing new ways to keep your code secure

It’s more important than ever that every developer becomes a security developer—that they responsibly disclose vulnerabilities and patch vulnerable code quickly. Today, we’re excited to announce several new security features designed to make it easier for developers to secure their code.

Justin Hutchings
Git ransom campaign incident report—Atlassian Bitbucket, GitHub, GitLab

Git ransom campaign incident report—Atlassian Bitbucket, GitHub, GitLab

Today, Atlassian Bitbucket, GitHub, and GitLab are issuing a joint blog post in a coordinated effort to help educate and inform users of the three platforms on secure best practices relating to the recent Git ransomware incident. Though there is no evidence Atlassian Bitbucket, GitHub, or GitLab products were compromised in any way, we believe it’s important to help the software development community better understand and collectively take steps to protect against this threat.

John Swanson
Weak cryptographic standards removed

Weak cryptographic standards removed

Earlier today we permanently removed support for the following weak cryptographic standards on and TLSv1/TLSv1.1: This applies to all HTTPS connections, including web, API, and Git connections to…

Patrick Toomey