New Branch Protections: Last Pusher and Locked Branch
Today we’re releasing two new branch protections. Require approval from someone other than the last pusher Now, before a pull request can be merged, you can require it to be…
Today we’re releasing two new branch protections. Require approval from someone other than the last pusher Now, before a pull request can be merged, you can require it to be…
Having a robust security plan is key to innovation. These tips will empower you to gain the upper hand on cyberattacks, so you can ship quickly and innovate with ease.
Learn about using GitHub Advanced Security (GHAS) alerts with Security Information and Events Management (SIEM) tools. Check out the integrations, and read more about getting started.
The new Scheduled Reminders UI We made significant enhancements to schedule reminders experience in GitHub app for Microsoft Teams. We have introduced a first class UI to configure your pending…
Developers can now view GitHub code scanning findings directly in VS Code and GitHub Codespaces. The new Microsoft SARIF Viewer extension gives developers direct access to their code scanning results, making remediating vulnerabilities easier than ever.
Cross-platform apps built with the popular Flutter toolkit can now benefit from Dependabot alerts.
In September, we experienced one incident that resulted in degraded performance across GitHub services. We also experienced one incident resulting in significant impact to Codespaces. We are still investigating that incident and will include it in next month’s report. This report also sheds light into an incident that impacted Codespaces in August and an incident that impacted Actions in August.
Actions are coming to GitHub Mobile! You can now view and manage your pull requests on the go. Tapping on checks when viewing a pull request now leads to a…
We’ve been responding to your feedback – here’s a recap of some changes recently made to Dependabot alerts. Dependabot Alerts details pages now auto-magically refresh after PR generation attempts are…
Today’s Changelog brings numerical field sums, Team linked projects, project migration improvements, and URL pasting preferences! ➕ Display sum of numeric fields Addressing a top user request, you can now…
When resolving security alerts for vulnerable transitive npm dependencies, it is possible that updating a direct dependency will remove the vulnerable transitive dependency from the tree. Dependabot can now resolve…
You can now display your local timezone on your profile to give others an idea of when to expect responses to pull requests or issues from you. You can opt…
We have started creating and storing CodeQL databases for the most popular open-source projects on GitHub.com. If you use CodeQL for security research, you can now obtain these databases easily…
The ReadME Project & Podcast evolve with community expert voices and topics to stoke discussion about the culture and craft of software development.
Go beyond knowing GitHub as the home of open source and explore how GitHub Enterprise can help you transform your software engineering organization and practices.
Dependabot alerts can give you the ability to secure your project by keeping dependency-based vulnerabilities out of your code. Here are some tips to more efficiently prioritize and take action on your alerts, so you can get back to building.
We’re thrilled to be back at the Grace Hopper Celebration at Open Source Day, the largest celebration of women in open source. Stop by and say hi at one of our workshops.
When GitHub creates merge commits, like to test whether a pull request can be merged cleanly or to actually merge a pull request, it now uses the merge-ort strategy. merge-ort…
We’re taking a look at two commonly-used security tools and detailing how they can help secure your projects.
Your GitHub repositories with Dependabot alerts enabled and Dependabot security updates enabled will automatically generate Dependabot pull requests for vulnerable npm transitive dependencies. Previously, Dependabot couldn’t generate a security update…
In the Development section of an issue, you can now link existing branches (or pull requests) to that issue. Learn more about manually linking branches to an issue.
Build what’s next on GitHub, the place for anyone from anywhere to build anything.
Join us October 28-29 in San Francisco or online for GitHub Universe, our flagship developer event uniting people, agents, and the world’s code.