CodeQL code scanning now supports customizing build configurations for Go analysis
CodeQL code scanning now supports customizing build configurations for Go analysis
GitHub Blog Search
CodeQL code scanning now supports customizing build configurations for Go analysis
The GitHub Enterprise Server 3.7 Release Candidate is available
The Sigstore GA means you can protect your software supply chain today with GitHub Actions, and will power new npm security capabilities in the near future.
Dependabot updates support for the Python PEP 621 standard
Reduce Dependabot version updates in your Python projects with the increase-if-necessary strategy
Secret scanning enterprise-level enablement events now in the audit log
We’re always trying to improve the GitHub developer experience in meaningful ways, and we love learning from our customers. In the last several months we released several new fork capabilities, and we’re publishing revised fork documentation that gives more details with clearer explanations to make fork concepts easier to understand.
GitHub Actions:OpenID Connect support enhanced to enable secure cloud deployments at scale
Fine-grained personal access tokens offer enhanced security to developers and organization owners, to reduce the risk to your data of compromised tokens.
Secret scanning now runs a historical scan to detect newly added secret types
GitHub is sponsoring Open Source Initiative’s Deep Dive: AI because we think it’s important for the community to unpack how open source software, process, and principles can help best deliver on the promise of AI.
Explore 80+ content sessions delivered by over 120 different speakers, across two days and four content tracks, all designed to level up your skills.
Developers can now view GitHub code scanning findings directly in VS Code and GitHub Codespaces. The new Microsoft SARIF Viewer extension gives developers direct access to their code scanning results, making remediating vulnerabilities easier than ever.
Enable secret scanning for an enterprise with one click
In September, we experienced one incident that resulted in degraded performance across GitHub services. We also experienced one incident resulting in significant impact to Codespaces. We are still investigating that incident and will include it in next month’s report. This report also sheds light into an incident that impacted Codespaces in August and an incident that impacted Actions in August.
GitHub Universe is back and more robust than ever, with two great ways to engage with everything this global developer event has to offer.
Another new release of Git is here! Take a look at some of our highlights on what's new in Git 2.38.