security-and-compliance

Subscribe to all "security-and-compliance" posts via RSS or follow GitHub Changelog on Twitter to stay updated on everything we ship

May 18, 2022

Creation dates for release assets

May 16, 2022

Dependabot alerts show all affected files for vulnerable function calls (Python Beta)

May 13, 2022

View Dependabot alerts across the enterprise

May 13, 2022

DigitalOcean is now a GitHub secret scanning partner

May 12, 2022

Secret scanning: Dry runs for enterprise-level custom patterns

May 10, 2022

Dependabot keeps `@types` dependencies in sync with updated packages

April 28, 2022

Secret scanning now prevents secret leaks in web commits

April 27, 2022

Code scanning: deprecation of CodeQL Action v1

April 14, 2022

JD Cloud is now a GitHub secret scanning partner

April 14, 2022

Dependabot alerts show vulnerable function calls (Python Beta)

April 11, 2022

Secret scanning detects and revokes leaked passwords

April 8, 2022

Secret scanning: Dry runs for organization-level custom patterns

April 7, 2022

Security Overview for organizations is generally available

April 6, 2022

Secret scanning custom pattern events now in the audit log

April 6, 2022

Dependabot Alert API adds relevant update info to the schema

April 6, 2022

GitHub Action for dependency review enforcement

April 5, 2022

Secret scanning webhooks for alert locations

April 5, 2022

pub beta support for Dependabot version updates

April 5, 2022

CodeQL runner is now deprecated

April 4, 2022

Secret scanning prevents secret leaks with protection on push