Search results for: REST API

We sit down with Jason Lengstorf on the GitHub Podcast, where he shares his perspective on education, AI, open source, and more.

When a chat conversation is poisoned by indirect prompt injection, it can result in the exposure of GitHub tokens, confidential files, or even the execution of arbitrary code without the user’s explicit consent. In this blog post, we’ll explain which VS Code features may reduce these risks.

Enterprise owners can now create a set of custom organization roles that are available across all their organizations. The core set of roles you use in your day-to-day work can…

Scaling your GitHub usage just got easier. Customers on the Visual Studio subscriptions with GitHub Enterprise bundle now have the option to transition to pay-as-you-go, usage-based billing for GitHub Enterprise…

Discover the latest trends and insights on public software development activity on GitHub with the quarterly release of data for the Innovation Graph, updated through March 2025.

Learn how maintainers are using the GitHub MCP Server and what they are building in this episode of the GitHub Podcast.

Learn how the GitHub Secure Open Source Fund helped 71 open source projects significantly improve their security posture through direct funding, expert guidance, and actionable playbooks.

Upgrade from a local MCP Docker image to GitHub’s hosted server and automate pull requests, continuous integration, and security triage in minutes — no tokens required.

How using GitHub’s free inference API can make your AI-powered open source software more accessible.

You can now grant permissions to GitHub Apps to review secret scanning push protection bypass requests and alert dismissal requests. This makes it easier for organizations to set up automated…

In June, we experienced three incidents that resulted in degraded performance across GitHub services.

That idea you’ve been sitting on? The domain you bought at 2AM? A silly or serious side project? This summer, we invite you to build it — for the joy, for the vibes, For the Love of Code 🧡

Discover how to increase the coverage of your CodeQL CORS security by modeling developer headers and frameworks.

DjVuLibre has a vulnerability that could enable an attacker to gain code execution on a Linux Desktop system when the user tries to open a crafted document.

You can now manage artifact attestations more effectively with new updates to the UI and API, including deletion, filtering, and bulk actions. Here’s what’s new: Delete attestations: Easily delete artifact…

The Actions Runner Controller (ARC) 0.12.0 release introduces several enhancements including: public preview support for Red Hat OpenShift Kubernetes clusters and vault-based secret management, improvements to Docker-in-Docker (DinD) container mode,…

You can now assign teams as the app managers of some or all of your organization’s GitHub Apps. The App Manager role has been converted to a standard organization role,…

GitHub Enterprise Server (GHES) 3.17 enhances deployment efficiency, monitoring capabilities, code security, and policy management. Here are a few highlights in the 3.17 release: GitHub Advanced Security (GHAS) is now…

CodeQL scans on pull requests for JavaScript, TypeScript, Java, Ruby, and Python are now up to 20% faster. This is powered by our new incremental analysis, which only analyzes new…

We’re making it easier than ever to take your AI project from idea to shipped, all within GitHub. With the new GitHub Models repository integration, you get the building blocks…