Search results for: GitHub Pages

Open source is aging. We can better support Gen Z contributors through purpose, flexibility, and pathways to leadership.

Now generally available, GitHub Secret Protection users have the ability to configure which secret scanning patterns are included in push protection. This customization helps you to better meet your organization’s…

Discover the latest trends and insights on public software development activity on GitHub with the quarterly release of data for the Innovation Graph, updated through March 2025.

We’ve made numerous improvements to the new pull request “Files changed” page that launched as a public preview in June. This new page will eventually replace the existing page and…

Security teams can now choose which secret scanning patterns are included in push protection. Previously, push protection only covered a subset of patterns that met strict criteria. With this update,…

DNS rebinding attack without CORS against local network web applications. Explore the topic further and see how it can be used to exploit vulnerabilities in the real-world.

In this post, I’ll look at CVE-2025-0072, a vulnerability in the Arm Mali GPU, and show how it can be exploited to gain kernel code execution even when Memory Tagging Extension (MTE) is enabled.

An introduction to the three distinct modes of GitHub Copilot and a practical guide for integrating them effectively into your workflow.

We’re open sourcing Annotated Logger, a Python package that helps make logs searchable with consistent metadata.

The refreshed pull request commits page, which was previously in public preview, is now generally available! This updated page improves performance, is more consistent with other pages across GitHub, and…

You can now export security data for offline analysis, reporting, and archival purposes on the enterprise-level security overview pages. This includes: Enterprise-level overview dashboard: Export alert-level data for all your…

Learn about browser extension security and secure your extensions with the help of CodeQL.

Open source software underpins all sectors of the economy, public services and even international organizations like the United Nations. How can all its beneficiaries work together to make the open source ecosystem more sustainable?

The pull request commits page has been refreshed to improve performance, improve consistency with other pages, and to make the experience more accessible! To minimize disruptions, the capabilities of the…

Latest Engineering Spotlight Featured playlists Step inside GitHub Universe 2024 Learn about GitHub Copilot Stay informed with The Download Explore GitHub for Beginners News & insights

Code scanning autofix for alerts in default branch is now available in public beta for all GitHub Advanced Security customers. This feature empowers developers to reduce the time and effort…

Unstructured data holds valuable information about codebases, organizational best practices, and customer feedback. Here are some ways you can leverage it with RAG, or retrieval-augmented generation.

Gain valuable insights and effectively monitor your enterprise’s security landscape and progress with two new enterprise-level pages: the security overview dashboard and secret scanning metrics. Key features Customizable filters: Select…

From mastering prompt engineering to leveraging AI for code security, here’s how you can excel in today’s competitive job market.

Discover the latest trends and insights on public software development activity on GitHub with the release of Q4 2023 data for the Innovation Graph.

In this post, I’ll look at CVE-2023-6241, a vulnerability in the Arm Mali GPU that allows a malicious app to gain arbitrary kernel code execution and root on an Android phone. I’ll show how this vulnerability can be exploited even when Memory Tagging Extension (MTE), a powerful mitigation, is enabled on the device.