Powering community-led innovation with GitHub Actions
As we celebrate Actions becoming generally available, check out some of the ways teams are contributing to Actions—and how you can start automating more of your workflow.
GitHub Blog Search
Search Results for: Security
New from Universe 2019: GitHub for mobile, GitHub Archive Program, and more
It’s our favorite time of year: GitHub Universe. And we've made some exciting announcements. GitHub Actions and Packages are now out of beta, we launched GitHub for mobile, redesigned the notifications experience, and introduced lots of other features we think you’ll love.
GitHub Enterprise Server 2.19 is here
See what’s new for community and project management, developer productivity, and security in GitHub Enterprise Server 2.19.
GitHub Enterprise Server 2.19
The 2.19.0 release of GitHub Enterprise Server is now available for download. The latest release includes the triage and maintain roles, WebAuthn security keys, NuGet support for the dependency graph, and more.
Our tl;dr for California’s new privacy law: Do not sell
California’s new privacy law comes into effect this January. Learn how you can prepare (tl;dr—don’t sell personal information) and contribute to the rules.
The State of the Octoverse 2019
To celebrate 365 days of achievements, let’s look back at the code and communities built on GitHub this year.
API changes for OAuth token access to SAML organizations
You're now required to obtain an OAuth token via the web application flow for SAML access to organizations requiring SSO. In most cases, this change also prohibits access via tokens…
Get over $100k worth of tools with the GitHub Student Developer Pack
The GitHub Student Developer Pack is now offering over $100k worth of tools to students with over 25 new participating partners.
How partners like GitKraken use GitHub Actions
Check out a few of our favorite GitHub Actions created by our partners at Mabl, Codefresh, GorillaStack, and GitKraken.
GitHub Actions adds policy controls for organization and repository owners
GitHub Actions has new settings for organizations and repository owners to limit the usage of external Actions.
Team Synchronization (general availability)
Team Synchronization is now generally available for GitHub Enterprise Cloud organizations. With team synchronization, Enterprise Cloud organizations can synchronize Azure Active Directory (Azure AD) group membership to GitHub teams. We…
Azure Active Directory team synchronization, now available with Enterprise Cloud
Now you can sync groups across Azure Active Directory and GitHub teams with team synchronization for GitHub Enterprise Cloud.
Securing software, together
Software security is a collective problem, a responsibility that involves producers and consumers of code, open source maintainers, security researchers, and security teams. At GitHub, we want to give the community the tools it needs to secure the software we all depend on.
Welcoming Semmle to GitHub
Today we’re announcing a big step in securing the open source supply chain: we’re welcoming Semmle to the GitHub.
Dependency graph support is now available for PHP repositories with Composer dependencies
The dependency graph is rolling out for all PHP repositories with Composer dependencies. In addition to Composer, GitHub supports package managers for many other programming languages, including Maven, NPM, Yarn, and Nuget.
Global software collaboration in the face of sanctions
Sanctions impact both developers and the global open source community. Read more about how US trade sanctions affect GitHub—and how we’re advocating for as much access to code and collaboration as possible.
Running GitHub on Rails 6.0
On August 26, 2019, the GitHub application was deployed to production with 100% of traffic on the newest Rails version: 6.0. Read more about our process for upgrading, what we learned, and what’s next.
GitHub has SOC 1 and SOC 2 Type 2 reports
GitHub Enterprise Cloud recently finished a security audit with the release of SOC 1 and 2 Type 2 reports.
Dependency graph now supports NuGet .vcxproj and .fsproj
The dependency graph now supports .vcxproj and .fsproj files that list NuGet dependencies in their PackageReference section. .NET repositories with these formats will start to see dependency graph updates and…
GitHub intern project: Building a Learning Lab API
Check out our GitHub Internship series brought to you by our 2019 summer interns. In this post, Philip Dumaresq shares his experience building a Learning Lab API.
GitHub Enterprise Server 2.18 is here
See what’s new for project management, security, and the developer experience with our latest Enterprise Server release.