The GitHub Stars in our eyes ⭐️
Over the past year, the GitHub Stars have made a tremendous impact in the community with their influence, inspiring and building communities and creating content to help everyone.
GitHub Blog Search
Over the past year, the GitHub Stars have made a tremendous impact in the community with their influence, inspiring and building communities and creating content to help everyone.
In January, we experienced no incidents resulting in service downtime to our core services.
A deep dive into how GitHub adds support for new languages to CodeQL.
Starting today, we are rolling out mandatory 2FA to all maintainers of top-100 npm packages by dependents.
In GitHub's latest transparency report, we’re giving you a by-the-numbers look at how we responded to requests for user info and content removal.
When it comes to secure database access, there's more to consider than SQL injections. OWASP Top 10 Proactive Control C3 offers guidance.
Our community has been hard at work through December shipping updates. Here's our staff picks for open source projects with major version releases.
When digital infrastructure is overlooked by governments, it isn't just a missed opportunity: policies may inadvertently endanger open source collaboration.
Learn how the GitHub Mobile Team automates their release process with GitHub Actions.
GitHub was honored to contribute to the Santa Clara Principles on Transparency and Accountability in Content Moderation 2.0.
Looking to avoid security vulnerabilities, buttons that don’t work, slow site speeds, or manually writing release notes? This one's for you.
Defining your security requirements is the most important proactive control you can implement for your project. Here's how.
GitHub Desktop now shows pull request check run statuses
We shipped a ton of updates in November, from the push notification for PR review activities on the go, to an easy way to create Markdown links.
This lesser-known OWASP project aims to help developers prevent vulnerabilities from being introduced in the first place.
In November, we experienced one incident resulting in significant impact and degraded state of availability for multiple services.
From learning YAML to scripting with Bash, here are a few simple tips for developers who want to speed up their workflows.
Recently, the Copyright Office responded to the calls to clarify the scope of protected security research.
The latest release of the CodeQL CLI supports including markdown-rendered query help in SARIF files so that the help text can be viewed in the code scanning UI. This functionality…
The GitHub Services Engineers have released the Advanced Security Enforcer GitHub Action to enable organizations to utilize code scanning in a consistent and automated way.