Release Radar · October 2017
We’re kicking off Cyber Security month with a few projects to help up your security game with the tools and know-how to protect yourself from common vulnerabilities. These are the…
GitHub Blog Search
Search Results for: Security
Introducing GitHub Enterprise 2.11
Enhance performance in high availability environments, define more granular permissions, and seamlessly review code with GitHub Enterprise 2.11. Our latest release brings together some of the most-requested features…
Extend your workflow with these new Marketplace apps
Whatever you use to build software, chances are there are ways to simplify. GitHub Marketplace brings together your favorite tools to provide the functionality and expertise you need to work…
Introducing seven new apps to GitHub Marketplace
Whether you’re working on an open source project or building a software company, chances are you can simplify your work with GitHub Apps. In May, we launched GitHub Marketplace—a place…
Introducing Soft U2F, a software U2F authenticator for macOS
In an effort to increase the adoption of FIDO U2F second factor authentication, we're releasing Soft U2F—a software-based U2F authenticator for macOS. Soft U2F currently works with Google Chrome and…
Helping secure FOSS and the internet: our $100,000 donation to the Internet Bug Bounty
A little over three years ago, we launched our Security Bug Bounty Program, a way to reward security researchers who help make GitHub more secure by reporting vulnerabilities in our…
Soft U2F
In an effort to increase the adoption of FIDO U2F second factor authentication, we're releasing Soft U2F: a software-based U2F authenticator for macOS. We've long been interested in promoting better…
Introducing code owners
While effective code review is essential to every successful project, it's not always clear who should review files—even with GitHub's reviewer suggestions. Now repository maintainers can define exactly which people…
Nested teams add depth to your team structure
Now you can use multiple levels of nested teams to reflect your group or company's hierarchy within your GitHub organization, making your organization's permissions structure clearer and easier to manage.…
Introducing GitHub Enterprise 2.10: build tools with the new GitHub GraphQL API, organize with topics, and level up your project management
The latest GitHub Enterprise release is here with updates for developers and admins alike. Customizable workflows and advanced project tracking help your team do more at every step of the…
Introducing GitHub Enterprise 2.10: build tools with the new GitHub GraphQL API, organize with topics, and level up your project management
The latest GitHub Enterprise release is here with updates for developers and admins alike. Customizable workflows and advanced project tracking help your team do more at every step of the…
Git 2.13 has been released
The open source Git project has just released Git 2.13.0, with features and bugfixes from over 65 contributors. Before we dig into the new features, we have a brief security…
SHA-1 collision detection on GitHub.com
A few weeks ago, researchers announced SHAttered, the first collision of the SHA-1 hash function. Starting today, all SHA-1 computations on GitHub.com will detect and reject any Git content that…
Bug Bounty third anniversary wrap-up
In honor of our Bug Bounty Program's third birthday, we kicked off a promotional bounty period in January and February. In addition to bonus payouts, the scope of the bug…
A formal spec for GitHub Flavored Markdown
We're releasing a formal specification of the syntax for GitHub Flavored Markdown, and its corresponding reference implementation.
Powerful new features for businesses on GitHub.com
Today we're introducing a new Business offering that brings SAML single sign-on, automated provisioning and deprovisioning, 24/5 support, and guaranteed uptime to GitHub.com. With direct access to our developer community…
Discontinue support for weak cryptographic standards
Cryptographic standards are ever evolving. It is the canonical game of security cat and mouse, with attacks rendering older standards ill-suited, and driving the community to develop newer and stronger…
A glimpse into GitHub’s Bug Bounty workflow
Last month, we announced the third anniversary of our Bug Bounty Program. While there's still time to disclose your findings through the program, we wanted to pull back the curtain…
Organize your experts with ad hoc teams
Many engineering organizations sort developers into teams like application engineering, platform engineering, web development, systems, and quality. Structuring organizations in this way can leave blind spots that exclude the people…
Adding Community & Safety checks to new features
With the continuous shipping nature at GitHub, it's easy for the most well-intentioned feature to accidentally become the vector of abuse and harassment. The Community & Safety engineering team focuses…
New and improved two-factor lockout recovery process
Starting January 31, 2017, the Delegated Account Recovery feature will let you associate your GitHub account with your Facebook account, giving you a way back into GitHub in certain two-factor…