06/2024

CodeQL is the static analysis engine that powers GitHub code scanning. CodeQL version 2.17.5 has been released and has now been rolled out to code scanning users on GitHub.com. CodeQL…

The GitHub Enterprise Server 3.13 release is generally available GitHub Enterprise Server 3.13 gives customers more fine-grained control over deployment requirements and enhanced security controls. Here are a few highlights:…

Secret scanning’s delegated bypass for push protection allows you to specify which teams or roles have the ability to bypass push protection, and requires everyone else to submit a request…

GitHub Copilot Enterprise users in Visual Studio Code can now get answers from Copilot Chat enriched with context from Copilot knowledge bases and Bing search results. To get started, make…

GitHub Copilot Enterprise subscribers in Visual Studio can now use Copilot Chat to get answers enriched with context from their entire repository (not just open tabs!) and Bing search results.…

We’re excited to introduce enhancements to custom properties as well as updates to the push rule public beta. Custom properties updates! New property types Multi select allows a repo to…

Until this release, when a manifest file included a version range of a package (e.g. version < 3), when GitHub generated an SBOM for that package, it would not include…

CodeQL is the static analysis engine that powers GitHub code scanning. CodeQL version 2.17.4 has been released and has now been rolled out to code scanning users on GitHub.com. This…

For security and convenience, we’ve updated how the account picker can be triggered during sign-in to an OAuth or GitHub Application. Some apps will see it all of the time,…

Configurations are collections of security settings that organization administrators and security managers can define to help roll out GitHub security products at scale. Starting today, you can enforce configurations. This…

We are excited to announce that compliance reports are now available for GitHub Copilot Business and Copilot Enterprise. Specifically, GitHub has published a SOC 2 Type I report for Copilot…

Dependabot can now provide updates to Rust dependencies by accessing Cargo private registries. To learn more, check out the documentation for configuring private registries for Dependabot.

We are excited to announce that organizations within an enterprise can now create network configurations independently of their enterprise for Azure private networking. Azure private networking is a powerful feature…

Enterprise accounts on GitHub.com, created after June 2, 2024, along with organizations owned by these accounts, have access to the enhanced billing platform. This includes enhanced billing for Git Large…

Today, GitHub announced the public beta of ArmⓇ-based Linux and Windows hosted runners for GitHub Actions. This new addition to our suite of hosted runners provides power, performance & sustainability…