Git Credential Manager: authentication for everyone
Ensuring secure access to your source code is more important than ever. Git Credential Manager helps make that easy.
GitHub Blog Search
Ensuring secure access to your source code is more important than ever. Git Credential Manager helps make that easy.
Starting today, we are rolling out mandatory 2FA to all maintainers of top-100 npm packages by dependents.
Our community has been hard at work through December shipping updates. Here's our staff picks for open source projects with major version releases.
When digital infrastructure is overlooked by governments, it isn't just a missed opportunity: policies may inadvertently endanger open source collaboration.
In this post, I’ll discuss how to apply OWASP Proactive Control C2: Leverage security frameworks and libraries.
Looking to avoid security vulnerabilities, buttons that don’t work, slow site speeds, or manually writing release notes? This one's for you.
Precise code navigation is powered by stack graphs, a new open source framework that lets you define the name binding rules for a programming language.
Today we're introducing enhanced login verification to the npm registry, and we will begin a staged rollout to maintainers beginning Dec 7.
The new sparse index feature makes it feel like you are working in a small repository when working in a focused portion of a monorepo.
Repository Advisories Support Multiple Affected Products
npm access tokens will now follow the established format of GitHub authentication tokens.
The end of financial year is complete, tax time is over, and everyone is back to shipping awesome projects. During August, our community has been super busy shipping lots of…
With Linux celebrating it’s 30 year anniversary, I thought I’d use that as an excuse to highlight 30 of my favorite free and open source Linux games, their communities, and…
Introducing the CodeQL package manager (public beta)
polkit is a system service installed by default on many Linux distributions. It’s used by systemd, so any Linux distribution that uses systemd also uses polkit.
GitHub secret scanning has been securing our users’ code by scanning for and revoking secrets since 2015. Recently, we’ve focused on scanning for package registry credentials as well—a significant and…
Dependabot Preview has helped more than 30,000 organizations keep their packages updated with more than seven million pull requests merged since it launched. As a result of that success, the…
The open source community is always hard at work. February's projects were super hard to pick since there are so many amazing releases. These are exciting new releases from some…