Search results for: REST API

Support for Actions in internal repositories is now generally available for GitHub organizations owned by an enterprise account. You can innersource automation by sharing Actions in internal repositories, without publishing…

A CODEOWNERS file defines the users or teams responsible for different parts of your repository, and helps ensure the right people are included in pull request reviews. We’ve shipped some…

A behind-the-scenes peek into the machine learning framework powering new code scanning security alerts.

GitHub Advanced Security customers can now enable secret scanning for their archived repositories via the UI and API. For more information: About secret scanning About archived repositories

When it comes to secure database access, there’s more to consider than SQL injections. OWASP Top 10 Proactive Control C3 offers guidance.

Learn new skills, build projects and meet like-minded students with the latest shows from the GitHub Education Stream Team.

When digital infrastructure is overlooked by governments, it isn’t just a missed opportunity: policies may inadvertently endanger open source collaboration.

With the successful liftoff of the James Webb Space Telescope, we ask our very own Arfon Smith about the history of open source and space science.

GitHub is updating the retention policy as it pertains to Checks data. Checks created by GitHub Actions and third-party GitHub Apps will be affected by the new retention policy. Starting…

This blog post tells the story of why we built a new search engine optimized for code.

Last week, GitHub joined the Internet Governance Forum to spread awareness of developers’ initiatives and public policy interests.

This lesser-known OWASP project aims to help developers prevent vulnerabilities from being introduced in the first place.

In November, we experienced one incident resulting in significant impact and degraded state of availability for multiple services.

We’ve improved the depth of CodeQL’s Python analysis by adding support for more libraries and frameworks, including: FastAPI aiomysql aiopg asyncpg Django REST framework The os.path module Flask-Admin toml ruamel.yaml…

The GitHub Services Engineers have released the Advanced Security Enforcer GitHub Action to enable organizations to utilize code scanning in a consistent and automated way.

In this post, I’ll use three bugs that I reported to Qualcomm in the NPU (neural processing unit) driver to gain arbitrary kernel code execution as root user and disable SELinux from the untrusted app sandbox in an Android phone.

To celebrate this most recent release, here’s GitHub’s look at some of the most interesting features and changes introduced since last time.

What an incredible month it’s been for GitHub and our communities. Whilst we’ve been busy with GitHub Universe, our communities have been busy coding. It’s been a successful year for…

During Universe, we received a number of security questions ranging from our strategy to our advisories. Here’s what we’ve got planned!

You can now export your Advanced Security license data to review usage across your business. The CSV data can be downloaded at both enterprise and organization level, and contains: the…

Here are a few ways our teams use GitHub Discussions internally to build community, simplify workflows, and get key insights into our work.