The latest blogs from GitHub

Dive into the novel security challenges AI introduces with the open source game that over 10,000 developers have used to sharpen their skills.

DNS rebinding attack without CORS against local network web applications. Explore the topic further and see how it can be used to exploit vulnerabilities in the real-world.

We’ll decode these two tools—and show you how to use them both to work more efficiently.

Sharpen your skills, test out new tools, and connect with people who build like you.

Get insights on the latest trends from GitHub experts while catching up on these exciting new projects.

Maintaining and developing complex and risky code is never easy. See how we addressed the challenges of securing our SAML implementation with this behind-the-scenes look at building trust in our systems.

See how to use GitHub Copilot to engage in some test-driven development.

In this post, I’ll look at CVE-2025-0072, a vulnerability in the Arm Mali GPU, and show how it can be exploited to gain kernel code execution even when Memory Tagging Extension (MTE) is enabled.

Celebrate #MaintainerMonth with two big opportunities to showcase your open source project at GitHub Universe and WeAreDevelopers World Congress. Applications are open. Don’t miss out!

A full look at agent mode in GitHub Copilot, including what it can do, when to use it, and best practices.

Plus, ways teammates and leaders can be better mentors for their new counterparts.

Implementing features has never been easier: Just assign a task or issue to Copilot. It runs in the background with GitHub Actions and submits its work as a pull request.

The new GitHub Shop collection is here. We’re celebrating you.

Learn how to go from curious coder to AI wizard—with a little help from GitHub.

GitHub takes the Global Accessibility Awareness Day (GAAD) pledge.

In April, we experienced three incidents that resulted in degraded performance across GitHub services.

Learn why and how you should write docs for your project with the Diátaxis framework.

Plus, considerations in updating one of GitHub’s oldest and most heavily used features.

Follow along and build a frontend client using React and Copilot Chat.

How to build custom annotations for your design system components or use Figma’s Code Connect to help capture important accessibility details before development.