Deprecation Notice: Codes of Conduct API preview

October 6, 2021

The Codes of Conduct API preview, which was accessible with the scarlet-witch-preview header, is being deprecated.

On December 6th, 2021, the fields behind this API preview will no longer be accessible. We recommend using the Get community profile metrics endpoint to retrieve information about a repository's code of conduct.

Email notifications will be sent to active users of the API preview throughout the deprecation period.

If you have any questions, please contact GitHub Support.

Dependency review is generally available

October 5, 2021

Dependency review is now generally available for all public repositories and for private repositories with GitHub Advanced Security enabled. Dependency review helps you understand dependency changes and the security impact of these changes when reviewing pull requests. It provides an easily understandable visualization of dependency changes with a rich diff on the "Files Changed" tab of a pull request and shows:

Which dependencies were added, removed, or updated, along with the release dates.
How many projects use these dependencies.
Vulnerabilities being introduced by the added or updated dependencies.

Open Dependency Review For Package Manifest

Learn more about dependency review
Learn more about GitHub Advanced Security

See more See more

The npm registry requires TLS 1.2 or higher

October 5, 2021

As previously announced, the npm registry now requires TLS 1.2 or higher for all requests, including package installation.

See more See more

View all changes

Deprecation Notice: Codes of Conduct API preview

Dependency review is generally available

The npm registry requires TLS 1.2 or higher

Subscribe to our newsletter