Explore the latest blogs from GitHub on all things software development from the newest capabilities on the GitHub platform to research and insights—and guides to help you level up your engineering skills.
On 02/02/2020 we took a snapshot of every active public repository on GitHub to be archived for a thousand years in the Arctic Code Vault. Learn about what’s included, how you can help us improve it, and more.
GitHub Desktop brings two features that avoid permission failures: rerouting when pushing to a cloned repository and rerouting when pushing to a protected branch.
Want to contribute to open source, but not sure where to begin? GitHub now helps you find good first issues to get you started.
We’ve recently launched good first issues recommendations to help new contributors find easy gateways into open source projects. Read about the machine learning engine behind these recommendations.
Git 2.25.0 includes a new experimental git sparse-checkout command that makes the existing feature easier to use, along with some important performance benefits for large repositories.
The GitHub Student Developer Pack now delivers over $200k worth of tools and training to every student with the addition of 22 new partners.
The GitHub for mobile beta is now available on Android—learn more and sign up to be part of a limited test group.
Thousands of game developers from all over the world participated in Game Off, our annual game jam celebrating open source. Let’s take a look at 2019’s winners.
This is the fourth and final post in a series about Ubuntu’s crash reporting system. We’ll review CVE-2019-11484, a vulnerability in whoopsie which enables a local attacker to get a shell as the whoopsie user, thereby gaining the ability to read any crash report.
This is the third post in a series about Ubuntu’s crash reporting system. We’ll review CVE-2019-15790, a vulnerability in apport that enables a local attacker to obtain the ASLR offsets for any process they can start (or restart).
This is the second post in our series about Ubuntu’s crash reporting system. We’ll review CVE-2019-7307, a TOCTOU vulnerability that enables a local attacker to include the contents of any file on the system in a crash report.
CodeNaija is a GitHub-led Hackathon where we hosted over 100 software engineers for over 30 hours of learning and passionate discussions about technology.
GitHub’s listing was announced at AWS re:Invent this year in the Global Partner Summit keynote. Now you can get GitHub Enterprise through the AWS Marketplace, making it easier to purchase for compliance or budget reasons.
This post summarizes several security vulnerabilities in Ubuntu’s crash reporting system: CVE-2019-7307, CVE-2019-11476, CVE-2019-11481, CVE-2019-11484, CVE-2019-15790. When chained together, they allow an unprivileged user to read arbitrary files on the system.
IP allow lists gives you the ability to limit access to enterprise assets to an allowed set of source IPs, and it’s now available in public beta for GitHub Enterprise Cloud customers.
Learn more about what’s behind the scenes with GitHub vulnerability alerts.
Learn more about the security vulnerabilities in Git 2.24 and older.
We’re sharing the #myfirstrepo contest winners along with how you can easily find your first repository.
Keep GitHub Enterprise Server secure with our recommendations for security best practices, from password protection to logging and auditing.
Join us at AWS re:Invent from December 2-6 to learn more about how GitHub and AWS work together.
Build what’s next on GitHub, the place for anyone from anywhere to build anything.
Last chance: Save $700 on your IRL pass to Universe and join us on Oct. 28-29 in San Francisco.
