
Fix to improve security around creation of pull requests in public repos
We’ve shipped a small fix to improve security around creation of pull requests in public repos. Prior to this fix and under very specific conditions, a user could create a…
We’ve shipped a small fix to improve security around creation of pull requests in public repos. Prior to this fix and under very specific conditions, a user could create a…
GitHub Enterprise Cloud customers with enterprise managed users (EMU) can now integrate with Ping Federate as a formally supported SSO and SCIM identity provider in public beta. To get started,…
Repositories in the user namespace of enterprise-managed users (EMU) can now be seen and accessed by enterprise administrators. All repositories in the user namespace (e.g. https://github.com/mona_tenantName/scratch) can now be navigated…
Node12 has been out of support since April 2022. As a result we have started the deprecation process of Node12 for GitHub Actions. We plan to migrate all actions to…
Enterprise administrators can now disable repository level self-hosted runners across organizations and enterprise user namespaces. Once this new setting has been enabled users will no longer be able to register…
If you manage your node.js dependencies with the pnpm package manager, you can now use Dependabot to keep those dependencies updated with automatic pull requests. You can easily configure this…
All eligible GitHub Enterprise accounts can now try GitHub Advanced Security for free for 14 days. GitHub Advanced Security provides integrated security with unparalleled access to curated security intelligence. This…
Today, we’re launching a new brand new tool for migrating from other code hosting platforms to GitHub and between GitHub products: GitHub Enterprise Importer (GEI). With GitHub Enterprise Importer, you…
GitHub Codespaces plans to begin rolling out improved access controls for organizations on June 27th, 2023. These changes will provide organizations additional control over which of their organization’s members or…
The option to use SMS on the sudo page on GitHub.com has been removed. Users can still use other 2FA methods as well as their password to pass the sudo…
The “Remove a repository from an app installation” API has been updated to fail early if attempting to remove a repository from an application that is installed on all repositories.…
The GitHub Enterprise Server 3.9 release candidate is here GitHub Enterprise Server 3.9 brings new capabilities to help companies create and ship secure software, more often. Here are a few…
Searching code globally across GitHub.com already requires users to login, but starting today, we are extending that to include repository-scoped search as well. To access the full capabilities of GitHub’s…
Announcing important changes to what it means for a pull request to be ‘approved’. If you use pull requests with protected branches, there are some important security improvements rolling out…
You can now create single-use self-hosted runners without time-limited registration tokens using the REST API. When a runner registers using this API it will only be allowed to run a…
Build what’s next on GitHub, the place for anyone from anywhere to build anything.
Last chance: Save $700 on your IRL pass to Universe and join us on Oct. 28-29 in San Francisco.