Measuring government policy on open source with a new dataset
Policymakers around the world are developing policies that impact how software gets built and who gets to build it, see the latest now.
GitHub Blog Search
Policymakers around the world are developing policies that impact how software gets built and who gets to build it, see the latest now.
CVE-2022-25664, a vulnerability in the Qualcomm Adreno GPU, can be used to leak large amounts of information to a malicious Android application. Learn more about how the vulnerability can be used to leak information in both the user space and kernel space level of pages, and how the GitHub Security Lab used the kernel space information leak to construct a KASLR bypass.
GitHub Copilot boosts developer productivity, but using it responsibly still requires good developer and DevSecOps practices.
GitHub Pages: Deprecating symlinks in non-Actions builds
A look at what happened on January 30, what measures we’re putting in place to prevent surprises, and how we’ll handle future changes.
Learn about CodeQL's improved user experience and enhancements that let you scan new languages, detect new types of CWEs, and perform deeper analyses of your applications.
Looking back over a year’s worth of developer-first content moderation and, new in this report, making our data more accessible to researchers.
GitHub Copilot for Business is now available to Free, Team, and GitHub Enterprise Cloud customers. This update allows more organizations to give their developers access to GitHub Copilot's powerful AI…
We’re launching new improvements to GitHub Copilot to make it more powerful and more responsive for developers.
GitHub Copilot is the world’s first at-scale AI developer tool and we’re now offering it to every developer, team, organization, and enterprise.
Dependency graph supports the Python PEP 621 standard
Dependency submission suggestions on Gradle, Maven, Scala and Mill repositories
Code scanning can be set up not to fail a pull request check
Explore how GitHub Advanced Security can help address several of the OWASP Top 10 vulnerabilities
GitHub Actions - Updating the default GITHUB_TOKEN permissions to read-only