
Get started with ease using security workflows!
GitHub Actions workflows in the Security category will now appear among the workflow recommendations based on a repository’s content.
GitHub Actions workflows in the Security category will now appear among the workflow recommendations based on a repository’s content.
GitHub Enterprise Server 3.4 is now generally available for all customers. This release makes software development faster and more secure with new features like reusable workflows, Dependabot security updates, and GitHub Advanced Security enhancements.
The MLH Fellowship, powered by GitHub, is a 12-week internship alternative for aspiring software engineers. Meet the 2022 cohort!
GitHub Advanced Security customers can now dry run custom secret scanning patterns at the repository level. Dry runs allow admins to review and hone their patterns before publishing them and…
Stop context switching. Keep your team’s project planning next to your code.
Reusable workflows offer a simple and powerful way to avoid copying and pasting workflows across your repositories.
Today, we’re shipping improvements to Dependabot alerts that make them easier to understand and remediate.
GitHub Enterprise Cloud users can now configure two new permissions when managing custom repository roles: View Dependabot alerts Dismiss Dependabot alerts You can learn more about custom repository roles in…
Implementation of the Primer NavigationList component and design upgrade to our user, organization, repository and teams settings pages has shipped to all github.com users. The new NavigationList component groups similar…
Along with the release of sponsors-only repositories, here’s a look at what’s new and what’s next for Sponsors.
Since our last update, we have a number of exciting updates to share with you for the new projects experience. Including improvements which shorten the gap between the original projects…
Starting today, we are rolling out mandatory 2FA to all maintainers of top-100 npm packages by dependents.
Are you on Slack Enterprise Grid? Do you have multiple Slack workspaces in your organization where you need to use our GitHub app?If yes, this is a feature for you!…
If your GitHub organization is owned by an enterprise account, you can now innersource automation by sharing Actions only within your enterprise without publishing them publicly. You can store the…
Organization owners on GitHub.com and GitHub Enterprise Cloud can now export the date of last activity for members, as well as their SAML NameID, and details on whether the member…
GitHub audit log streaming is now out of beta and generally available. Your experience using audit log streaming will not change, but we expanded the number of options you have…
When digital infrastructure is overlooked by governments, it isn’t just a missed opportunity: policies may inadvertently endanger open source collaboration.
GitHub Advanced Security customers can now retrieve private repository secret scanning results at the enterprise level via the GitHub REST API. This new endpoint supplements the existing repository-level and organization-level…
We have introduced a new policy setting that controls whether GitHub Actions can approve pull requests. This protects against a user using Actions to satisfy the “Required approvals” branch protection…
My colleague Stormy Peters and I are proud to represent GitHub at the White House’s Open Source Software Security Summit.
As part of our ongoing commitment to npm ecosystem security, and in advance of enforcing two-factor authentication for top packages maintainers, the npm team has been hard at work improving…
Build what’s next on GitHub, the place for anyone from anywhere to build anything.
Last chance: Save $700 on your IRL pass to Universe and join us on Oct. 28-29 in San Francisco.