Search results for: REST API

Discover how to increase the coverage of your CodeQL CORS security by modeling developer headers and frameworks.

DjVuLibre has a vulnerability that could enable an attacker to gain code execution on a Linux Desktop system when the user tries to open a crafted document.

You can now manage artifact attestations more effectively with new updates to the UI and API, including deletion, filtering, and bulk actions. Here’s what’s new: Delete attestations: Easily delete artifact…

The Actions Runner Controller (ARC) 0.12.0 release introduces several enhancements including: public preview support for Red Hat OpenShift Kubernetes clusters and vault-based secret management, improvements to Docker-in-Docker (DinD) container mode,…

You can now assign teams as the app managers of some or all of your organization’s GitHub Apps. The App Manager role has been converted to a standard organization role,…

GitHub Enterprise Server (GHES) 3.17 enhances deployment efficiency, monitoring capabilities, code security, and policy management. Here are a few highlights in the 3.17 release: GitHub Advanced Security (GHAS) is now…

CodeQL scans on pull requests for JavaScript, TypeScript, Java, Ruby, and Python are now up to 20% faster. This is powered by our new incremental analysis, which only analyzes new…

We’re making it easier than ever to take your AI project from idea to shipped, all within GitHub. With the new GitHub Models repository integration, you get the building blocks…

Learn how to go from curious coder to AI wizard—with a little help from GitHub.

GitHub Enterprise Server (GHES) 3.17 enhances deployment efficiency, monitoring capabilities, code security, and policy management. Here are a few highlights in the 3.17 release: GitHub Advanced Security (GHAS) is now…

Follow along and build a frontend client using React and Copilot Chat.

Three maintainers share their tips for gracefully sunsetting open source projects.

An introduction to the three distinct modes of GitHub Copilot and a practical guide for integrating them effectively into your workflow.

Get insights on the latest trends from GitHub experts while catching up on these exciting new projects.

What to look for with each model and how to test them in your workflows—with tips, tricks, and pointers.

MAI-DS-R1 is now available on GitHub Models. MAI-DS-R1 is an updated version of DeepSeek-R1, refined by Microsoft AI. It handles complex queries more effectively, works across multiple languages, and provides…

Comparing GitHub-hosted vs self-hosted runners for your CI/CD workflows? This deep dive explores important factors to consider when making this critical infrastructure decision for your development team.

GitHub’s dependency graph now supports a wider range of package ecosystems, including transitive path information and the registered name of the ecosystem. This change increases the accuracy and usefulness of…

What is CORS and how can a CORS misconfiguration lead to security issues? In this blog post, we’ll describe some common CORS issues as well as how you can find and fix them.

Every minute, GitHub blocks several secrets with push protection—but secret leaks still remain one of the most common causes of security incidents. Learn how GitHub is making it easier to protect yourself from exposed secrets, including today’s launches of standalone Secret Protection, org-wide scanning, and better access for teams of all sizes.