Wiki Subdomain
We just rolled out a security fix that puts all wikis under the @wiki.github.com@ subdomain. This means they can execute arbitrary JavaScript (like scriptaculous does, or maybe the Lighthouse Badge)…
We just rolled out a security fix that puts all wikis under the @wiki.github.com@ subdomain. This means they can execute arbitrary JavaScript (like scriptaculous does, or maybe the Lighthouse Badge) without getting access to your cookies.
Private wikis do not allow JavaScript for similar security reasons.
Written by
Related posts
Q1 2026 Innovation Graph update: Open source collaboration is accelerating worldwide
New Innovation Graph data shows global developer communities growing faster than ever, with collaboration reaching new highs across many economies.
GitHub joins coalition advocating for fixes to California AI Transparency Act to protect open source
We’re calling for targeted amendments to resolve conflicts with open source licensing and align with international transparency frameworks while preserving regulatory intent.
GitHub availability report: May 2026
In May, we experienced nine incidents that resulted in degraded performance across GitHub services.