Search results for: Pull Request

GitHub has been at the forefront of security key adoption for many years. We were an early adopter of Universal 2nd Factor (“U2F”) and were also one of the first…

In April, we experienced two incidents resulting in significant impact and degraded state of availability for API requests and the GitHub Packages service, specifically the GitHub Packages Container registry service.…

The open source community is always hard at work. February’s projects were super hard to pick since there are so many amazing releases. These are exciting new releases from some…

Last month, a member of the CodeQL security community contributed multiple CodeQL queries for C# codebases that can help organizations assess whether they are affected by the SolarWinds nation-state attack on various parts of critical network infrastructure around the world.

GitHub Actions: Workflows triggered by Dependabot PRs will run with read-only permissions

Not everyone takes a break over the festive season. Some people in the community have been busy shipping releases. So we’re here to bring you the latest and greatest releases…

As your Git repositories grow, it becomes harder and harder for new developers to clone and start working on them. Git is designed as a distributed version control system. This means that…

This blog describes a security vulnerability in the infrastructure that supports Germany’s COVID-19 contact tracing efforts. The mobile (Android/iOS) apps are not affected by the vulnerability and do not collect and/or transmit any personal data other than the device’s IP address. The infrastructure takes active measures to disassociate true positives from client IP addresses.

We’re releasing v7.0.0 of the npm CLI, which includes exciting new features such as Workspaces, automatically installed peer deps, and more!

GitHub Actions gives you the power to automate your workflow. Connect with the tools you know and love. Have more freedom to innovate and be creative. Deploy to any cloud,…

In this post I’ll show how garbage collections (GC) in Chrome may be triggered with small memory allocations in unexpected places, which was then used to cause a use-after-free bug.

Explore some impactful open source projects being created by teams around the world in response to COVID-19.

In this deep-dive, we identified and worked through sporadic latency issues with services running on Kubernetes in our environment.

The GitHub Actions workflow syntax has new features based on feedback from our community. Env at the workflow and job level It is common to need define a set of…

Now you can now assign any read-only contributor to issues they’ve commented on. They’ll get a notification that they are assigned, and if they aren’t able to take on the task, they can simply click the “Unassign me” button next to their username. 

Now, when a user with read-only access to a repository comments on an issue, a maintainer of that repository can assign the issue to that user. If the user does…

Organizations can now add community health files to a specially named .github repository to serve as organization-wide defaults for all repositories within their organization. You can add CONTRIBUTING, SUPPORT, CODE_OF_CONDUCT,…

For repositories with issue templates, the “Open new issue” from comments option will be restricted to users with write access. Learn more about issue templates

Now, when creating issue templates for your repository you can automate setting assignees and labels. Additionally, you can suggest an issue title to help standardize incoming issues. Learn more about…

Make managing your projects easy with automation

This creates the ability to do a direct “two dot” comparison between two commits. Now you can easily see the differences between two commits without comparing from their common merge…