GitHub Actions allows you to connect and share containers to run your software development workflow. Easily build, package, release, update, and deploy your project in any language—on GitHub or any external system—without having to run code yourself.
Learn more about Actions
We have expanded our security vulnerability alerts to include Java projects using Maven and .NET projects using Nuget. These are in addition to our existing support for JavaScript, Ruby, and Python.
Learn more about security alerts for vulnerable dependencies
GitHub Token Scanning automatically scans public repositories to check for known token formats. If and when a token is found, it is checked against provider APIs. The provider will then validate the token and send information to the owner about next steps (token cancellation and re-issuing).