Demystifying LLMs: How they can do things they weren’t trained to do
Explore how LLMs generate text, why they sometimes hallucinate information, and the ethical implications surrounding their incredible capabilities.
Explore how LLMs generate text, why they sometimes hallucinate information, and the ethical implications surrounding their incredible capabilities.
We’re excited to highlight another top contributing researcher to GitHub’s Bug Bounty Program—@Ammar Askar!
GitHub secret scanning protects users by searching repositories for known types of secrets such as tokens and private keys. By identifying and flagging these secrets, our scans help prevent data…
On December 21st, 2023 GitHub Codespaces plans to remove the deprecated Repository Access and Security setting. Rather than configuring cross-repository access at the account level, we now recommend declaring cross-repository…
GitHub secret scanning protects users by searching repositories for known types of secrets such as tokens and private keys. By identifying and flagging these secrets, our scans help prevent data…
By default, links within text blocks on GitHub are now underlined. This ensures links are easily distinguishable from surrounding text. If preferred, you can “hide” underlines for these links in…
In this post, I’ll exploit CVE-2023-4069, a type confusion in Chrome that allows remote code execution (RCE) in the renderer sandbox of Chrome by a single visit to a malicious site.
Use our new open source Trace2 receiver component and OpenTelemetry to capture and visualize telemetry from your Git commands.
We’re making changes to the IP addresses used by GitHub Enterprise Importer for outbound network connections. If you’re using GitHub Enterprise Importer to run migrations, you will need to add…
GitHub Copilot Chat can help you learn about accessibility and improve the accessibility of your code. In this blog, we share a sample foundational prompt that instructs GitHub Copilot Chat to become your personal AI assistant for accessibility.
Learn more about how we use GitHub to build GitHub, how we turned our guiding communications principles into prescriptive practices to manage our internal communications signal-to-noise ratio, and how you can contribute to the ongoing conversation.
Secret scanning now performs validity checks for select AWS, Microsoft, Google, and Slack tokens.
GitHub Sponsors is now available in 35 new regions! You can now sign up for Sponsors if you have a bank account and tax residence in any of the following…
You can now link your GitHub and Patreon accounts to start sponsoring projects. When the two accounts are linked and sponsorships are made on Patreon, you’ll receive sponsorship recognition on…
GitHub Sponsors has partnered with Patreon. We’re also expanding to new regions.
How to get the security basics right at your organization.
To improve accessibility for our users, we’ve introduced a new accessibility setting to underline links within text blocks. Links should be easily distinguishable from surrounding text, not just by color…
Announcing changes to permissions for packages. We are restricting the refs REST API endpoint from accepting POSTs from users and apps that only have the permission to read and write…
Recently, we’ve been working to make our CI experience better by leveraging the newly released GitHub feature, Actions larger runners, to run our CI.
Passkeys are a replacement for passwords when signing in, providing higher security, ease-of-use, and loss-protection. They are now generally available on GitHub.com for all users. By using a passkey you…
All GitHub.com users can now register a passkey to sign in without a password.
Build what’s next on GitHub, the place for anyone from anywhere to build anything.
Join us October 28-29 in San Francisco or online for GitHub Universe, our flagship developer event uniting people, agents, and the world’s code.