Skip to content

Repository Advisories Support Multiple Affected Products

If you are posting or editing a draft repository Security Advisory and the vulnerability impacts multiple packages and/or ecosystems, you can now identify all applicable affected products in the advisory.

In the past, users needed to publish multiple advisories for the same vulnerability because they could only select one ecosystem and package per advisory.

Add affected product

GitHub is where developers come to learn and celebrate what’s new in open source, and where maintainers share, collaborate and celebrate their community’s work. Starting today, two improvements to the release process on GitHub are generally available:

  • Maintainers can now automatically generate release notes, giving them a summary of all the pull requests for a given release.
  • The Releases UI refresh gives more clarity into what’s included in a given release and recognition for contributors in the community. We’ve also significantly overhauled pagination and introduced new search functionality.

Learn more about auto-generated release notes.

See more

We've added keyboard shortcuts for quotes and lists in Markdown files, issues, PRs and comments.

To add quotes, use cmd+shift+. on Mac or ctrl+shift+. on Windows/Linux.
To add an ordered list, use cmd+shift+7 on Mac or ctrl+shift+7 on Windows/Linux.
To add an unordered list, use cmd+shift+8 on Mac or ctrl+shift+8 on Windows/Linux.

Keyboard shortcuts

For a full list of all our keyboard shortcuts, see our docs.

See more