Wiki Subdomain
We just rolled out a security fix that puts all wikis under the @wiki.github.com@ subdomain. This means they can execute arbitrary JavaScript (like scriptaculous does, or maybe the Lighthouse Badge)…
We just rolled out a security fix that puts all wikis under the @wiki.github.com@ subdomain. This means they can execute arbitrary JavaScript (like scriptaculous does, or maybe the Lighthouse Badge) without getting access to your cookies.
Private wikis do not allow JavaScript for similar security reasons.
Written by
Related posts

GitHub Availability Report: May 2025
In May, we experienced three incidents that resulted in degraded performance across GitHub services.

GitHub Universe 2025: Here’s what’s in store at this year’s developer wonderland
Sharpen your skills, test out new tools, and connect with people who build like you.

GitHub Copilot: Meet the new coding agent
Implementing features has never been easier: Just assign a task or issue to Copilot. It runs in the background with GitHub Actions and submits its work as a pull request.