The latest blogs from GitHub

In January, we experienced two incidents that resulted in degraded performance across GitHub services.

How GitHub’s Product Security Engineering team manages our CodeQL implementation at scale and how you can, too.

Discover how to use GitHub Copilot to refactor your code and see samples of it in action.

The partnership between GitHub and Endor Labs enables application security engineers and developers to drastically reduce time spent on open source vulnerabilities, and gives them the tools to go from finding to fixing.

Introducing agent mode for GitHub Copilot in VS Code, announcing the general availability of Copilot Edits, and providing a first look at our SWE agent.

Three open source experts offer their advice on sharing open source projects with the world.

Empowering humanitarian action with open source: A natural language search tool for UN Resolutions.

Discover the exciting world of cybersecurity research: what researchers do, essential skills, and actionable steps to begin your journey toward protecting the digital world.

A deep dive on the work that went into making the component that powers repository and pull request file trees.

Open source AI models are in widespread use, enabling developers around the world to build custom AI solutions and host them where they choose.

Explore our simple guide to finding projects, understanding guidelines, and making an impact.

Discover the latest trends and insights on public software development activity on GitHub with the release of Q2 & Q3 2024 data for the Innovation Graph.

Learn how specially crafted artifacts can be used to attack Maven repository managers. This post describes PoC exploits that can lead to pre-auth remote code execution and poisoning of the local artifacts in Sonatype Nexus and JFrog Artifactory.

Learn how to modernize legacy code with GitHub Copilot with real-world examples.

Explore insights into open source community growth, innovation, and inclusivity with an updated survey dataset.

We share some of the GitHub Copilot team’s experience evaluating AI models, with a focus on our offline evaluations—the tests we run before making any change to our production environment.

Here’s your opportunity to empower the teen in your life to get a start in open source development.

In December, we experienced two incidents that resulted in degraded performance across GitHub services.

Learn how to document and explain legacy code with GitHub Copilot with real-world examples.

GitHub uses GitHub to build GitHub, and our CLI extensions are no exception. Read on to find out how we built the GitHub Skyline CLI extension using GitHub!

A new set of Git releases were published to address a variety of security vulnerabilities. All users are encouraged to upgrade. Take a look at GitHub’s view of the latest round of releases.