Search results for: Search

Do you worry that a CVE will hurt the reputation of your project? In reality, CVEs are a tracking number, and nothing more. Here’s how we think of them at GitHub.

We’re kicking off InFocus, a global virtual event focused on accelerating, securing, and improving the way software development teams work.

Another new release of Git is here! Take a look at some of our highlights on what’s new in Git 2.36.

GitHub secret scanning protects users by searching repositories for known types of secrets. By identifying and flagging these secrets, we help protect users from data leaks and fraud associated with…

Dependabot alerts now show if your repository code is calling known vulnerable functions from the dependency’s vulnerability. If your code is calling vulnerable code paths, this information is surfaced via…

GitHub now protects you by scanning public repos for leaked GitHub login credentials. If you accidentally expose your username and password in code or commit metadata, we will automatically reset…

We want to take away the pain and effort of keeping your code secure, so check out how Dependabot empowers developers to keep to their projects secure.

From automating builds and releases to taking care of large-scale regression testing, here are a few ways we use GitHub Actions to build GitHub.

GitHub Copilot is now available from Visual Studio 2022 for everyone in the technical preview.

Advice on fundamentals, picking languages to learn, social media presence, interviewing, and more

GitHub secret scanning protects users by searching repositories for known types of secrets. By identifying and flagging these secrets, we help protect users from data leaks and fraud associated with…

If there’s one habit that can make software more secure, it’s probably input validation. Here’s how to apply OWASP Proactive Control C5 (Validate All Inputs) to your code.

GitHub secret scanning protects users by searching repositories for known types of secrets. By identifying and flagging these secrets we help protect users from data leaks and fraud associated with…

We’ve introduced several new features to help enterprise owners more easily manage their accounts, including two features now in public beta.

Today, we are sharing new updates to our projects (Beta) experience, including some highly requested filtering additions and more on our continued investments into project insights. 👉 New filter syntax…

GitHub Actions workflows in the Security category will now appear among the workflow recommendations based on a repository’s content.

Anyone can now provide additional information to further the community’s understanding and awareness of security advisories.

Tips from our developer advocates on how and why to find a mentor.

Practical tips on how to apply OWASP Top 10 Proactive Control C4.

A comprehensive guide for vulnerability reporters.

Today, we’re shipping improvements to Dependabot alerts that make them easier to understand and remediate.