GitHub Actions: SBOMs now attached to hosted runner image releases for Ubuntu & Windows
GitHub Actions: SBOMs now attached to hosted runner image releases for Ubuntu & Windows
GitHub Blog Search
GitHub Actions: SBOMs now attached to hosted runner image releases for Ubuntu & Windows
Secret scanning is now available for free on public repositories
GitHub now allows you to track any leaked secrets in your public repository, for free. With secret scanning alerts, you can track and action on leaked secrets directly within GitHub.
Enable secret scanning with the enterprise-level REST API
Another new release of Git is here to end the year! Take a look at some of our highlights on what's new in Git 2.39.
Fixed bug affecting npm package and organization maintainers
Secret scanning now detects new secrets in issue content
In November, we experienced two incidents that resulted in degraded performance across GitHub services. This report also sheds light into an incident that impacted Codespaces in October.
Now you can create tokens with fine-grained permissions for automating your publishing and organization management workflows. And a new code explorer allows you to view content of a package directly in the npm portal.
Catch up on everything we announced and see what else happened during this year’s GitHub Universe conference that took place November 9-10.
AppSec expert Niroshan Rajadurai says putting developers at the center of everything will enable you to meet your security goals.
Administrators, or enterprise owners, have the increased responsibility of managing their account and keeping it secure. We are excited to introduce what is new with enterprise accounts and what is coming soon.
Code scanning organization-level REST API is available for public repositories
CodeQL code scanning launches Kotlin analysis support (beta)
Dependabot support for self-hosted Hex repositories
Updates to the two-factor authentication setup flow