Search results for: Pull Request

Guiding student developers through skill building foundations, a building block in their learning journey with GitHub Education.

GitHub Advanced Security for Azure DevOps is now generally available. Enable secret scanning, dependency scanning, and code scanning on your organization directly in Azure DevOps configuration settings.

After a successful public beta, we’re launching support for Bitbucket Server and Bitbucket Data Center migrations in GitHub Enterprise Importer. You can now easily use GitHub Enterprise Importer to migrate…

Starting today, GitHub Enterprise Importer supports repository migrations from Bitbucket Server and Bitbucket Data Center, and GitHub Actions Importer offers CI/CD migrations from Bitbucket and Bamboo.

Auto-triage rules are a powerful tool to help you reduce false positives and alert fatigue substantially, while better managing your alerts at scale. Starting today, you can now create your…

We have implemented a fix so that GITHUB_REF and the github.ref context value return a fully-formed ref (e.g – refs/heads/main) when a workflow is triggered as a result of a…

Dependency review now works with your dependencies from the dependency submission API. Dependency review enforces policies around vulnerabilities and acceptable licenses in the pull request. Previously, dependency review could not…

September 12, 2023 update: When we launched the latest version of your feed on September 6, 2023, we made changes to the underlying technology of the feed in order to…

Enterprise Managed User namespace repositories were previously able to use GitHub-hosted Actions runners outside of the owning enterprise’s entitlements. This was not an intentional configuration. Today we have disabled the…

Customers using GHES can now ensure secure development is a top priority with enhanced security and compliance controls for their repositories.

Learn how to optimize your usage of GitHub Projects to plan and track your work from idea to production.

Dependabot version updates help you keep your dependencies up-to-date by opening pull requests when dependencies can be upgraded. With today’s release, you can now use flexible grouping options in dependabot.yml…

Dependabot can now open pull requests to resolve alerts for your Gradle dependencies! If you have used the dependency submission API to upload your Gradle dependencies to the dependency graph…

In addition to scanning push and pull requests, code scanning default setup now also analyzes repositories on a weekly schedule. This ensures that a scan with the most recent version…

Another new release of Git is here! Take a look at some of our highlights on what’s new in Git 2.42.

If you are using Dependabot grouped version updates (currently in public beta), you can now group your pull requests by semantic version update level. This addition is designed to help…

As of August 17, 2023, Dependabot updates no longer support Python 3.6 or 3.7, which have reached their end-of-life. If your code uses these versions, Dependabot will no longer be…

In 3.2.8, GitHub Desktop is shipping two great community contributions of highly requested features — “Check Out a Commit” and “Double Click to Open in Your External Editor”. Alongside that,…

If you are using the Dependabot grouped version updates feature (currently in public beta), you can now group your pull requests by dependency type in ecosystems that support this. Instead…

Researchers from Purdue and NCSU have found a large number of command injection vulnerabilities in the workflows of projects on GitHub. Follow these four tips to keep your GitHub Actions workflows secure.

The GitHub Enterprise Server 3.10 release candidate is here GitHub Enterprise Server 3.10 gives customers more control over how their instance is used and run. Here are a few highlights:…