The latest blogs from GitHub

In this post I’ll show how input validation which should be used to prevent malformed inputs to enter our applications, open up the doors to Remote Code Execution (RCE).

The GitHub community is capable of incredible things and GitHub Actions is the tool. Do you want to automate your workflow, increase your productivity, and empower your developer experience? Then…

ICYMI: docs.github.com is the new place to discover all of GitHub’s product documentation! We recently completed a major overhaul of GitHub’s documentation websites. When you visit docs.github.com today, you’ll see…

Authentication is a critical component to your daily development. When working in open source, you need to prove that you have rights to update a branch with git push. Additionally…

Last week, GitHub joined over 500 organizations signing a letter to the U.S. Congress seeking continued support for the Open Technology Fund (OTF) and its mission of funding open source…

Leia este artigo em português Sabemos como a aprendizagem é importante para o seu sucesso na utilização do GitHub. Quando você estiver usando nossos produtos, esperamos que você se sinta…

One year ago, the security research team at Semmle launched its first Capture the Flag (CTF), as part of the Hack In The Box (HITB) Amsterdam conference. We wanted to…

The GitHub Workplace Experience team weighs in on how to get creative during COVID-19 and what the future holds.

GitHub Actions allows you to automate your workflow. With GitHub Actions, you can deploy to any cloud, build containers, automate messages, and do so much more. Use any tool you…

GitHub Enterprise Server 2.21 is now available with updates to simplify collaboration, increase reliability and improve security.

GitHub Actions makes it easy to automate all your software workflows, from continuous integration and delivery to issue triage and more. Whether you want to build a container, deploy a…

Student developers are the future of software. Their taste in tools, habits around code, what they are learning–all of these drivers will shape tech, and culture in general, for years…

Now you can create custom workflow templates to promote best practices and consistency across your organization.

Setting up a new repository with all the right linters for the different types of code can be time consuming and tedious. So many tools and configurations to choose from…

Background Machine Learning Operations (or MLOps) enables Data Scientists to work in a more collaborative fashion, by providing testing, lineage, versioning, and historical information in an automated way.  Because the…

Class of 2020, you did it! With schools turning to drive through diploma stops and recreating their campus in Minecraft, GitHub Education decided that celebrating this milestone for the next…

Keeping your dependencies updated is one of the easiest ways to keep the software you build secure. However, while it’s critically important to keep your dependencies updated, in a recent…

GitHub Actions allows you to automate your workflow. Connect with the tools you know and love, and have more freedom to innovate and be creative. With GitHub Actions, you can…

We’re partnering with Hack Club to support the students behind Summer of Making, a new remote, student summer program. From building Arduino-powered robots to creating an open source game, we’re excited to see students channel their passions and build with the Hack Club community this summer.

This post details how an open source supply chain malware spread through build artifacts. 26 open source projects were backdoored by this malware and were actively serving backdoored code.

We’ve given the GitHub Support Community a major upgrade with a number of benefits: built using open-source, great Markdown support, more responsive design, and so much more.