GitHub Issues – December 22nd update
👋 We just finished releasing the last feature update of the year for Projects. It was relatively light, mainly composed of bug fixes and minor improvements to some of our…
Home / 12/2022
12/2022
Code security enablement settings on the list organization repositories REST API
You can now view (GET) the security feature enablement status for all repositories in your organization using the “list organization repositories” endpoint in the REST API for the following security…
Access the Audit Log REST API using scoped tokens
Enterprise and organizations administrators can now create personal access tokens (classic) and OAuth apps with the read:audit_log scope to access the Audit Log REST API. Why is this important? Stolen…
Tencent Weixin now partners with GitHub to notify users if their credentials are exposed in a public repository
GitHub secret scanning protects users by searching repositories for known types of secrets. By identifying and flagging these secrets, our scans help prevent data leaks and fraud. We have partnered…
Secret scanning alerts link to providers’ docs
Secret scanning alerts for third party API key detections now include a link to relevant documentation provided by the service provider, where available. These links are intended to help users…
GitHub Actions: SBOMs now attached to hosted runner image releases for Ubuntu & Windows
GitHub Actions hosted runner images are now more secure than ever, with the ability to see exactly what software is pre-installed on the image that was used by the runner…
Secret scanning now push protects custom patterns
Previously, GitHub Advanced Security customers could enable push protection for all patterns supported by default. Now, admins can also enable push protection for any custom pattern defined at the repository…
Secret scanning is now available for free on public repositories
Previously, only organizations with GitHub Advanced Security could enable secret scanning’s user experience on their repositories. Now, any admin of a public repository on GitHub.com can detect leaked secrets in…
Dormant Users Report for Enterprise Accounts
The GitHub Enterprise Cloud Dormant Users report is now generally available. This report shows enterprise members who have not been active in the last 90 days. To learn more, read…
GitHub Actions – Sharing actions and reusable workflows from private repositories is now GA
The actions and reusable workflows from private repositories can now be shared with other private repositories within the same organization, user account, or enterprise. See managing the repository settings and…
Enable secret scanning with the enterprise-level REST API
Enterprises with GitHub Advanced Security can now enable secret scanning and push protection on all their organizations using a single call to an enterprise-level REST API endpoint. You can also…
Unarchive a repository via the REST API
You can now unarchive a repository via the REST API. Previously, unarchiving was only available via the GraphQL API or the UI. Learn more about updating repositories via the REST…
Dependabot hardens support for private registries
We’ve hardened our Dependabot support for private registries such that it will no longer make package requests to public registries if private registries are configured for the following ecosystems: Bundler…
Rename repositories while transferring them
Now admins can transfer and rename a repository at the same time. Before, each action was separate. In the transfer repository screen, choose “Select one of my organizations”. The “Repository…
Telnyx is now a GitHub secret scanning partner
GitHub secret scanning protects users by searching repositories for known types of secrets. By identifying and flagging these secrets, our scans help prevent data leaks and fraud. We have partnered…
The world's largest developer platform
GitHub
Build what’s next on GitHub, the place for anyone from anywhere to build anything.
