From migration tools to updates to Enterprise Managed Users, what’s new in GitHub Enterprise
Read a round-up of the exciting, new innovation coming from GitHub Enterprise.
Read a round-up of the exciting, new innovation coming from GitHub Enterprise.
Hacktoberfest has wrapped up, GitHub Universe has come to a close, and our community has been super hard at work. All the while people enjoyed turkey over Thanksgiving in the…
Learn about how we run a scalable vulnerability management program built on top of GitHub.
In the secret scanning list view, you can now apply a filter to display alerts that are the result of having bypassed push protection. This filter can be applied at…
This blog post describes two linked vulnerabilities found in Frigate, an AI-powered security camera manager, that could have enabled an attacker to silently gain remote code execution.
CodeQL 2.15.4 is rolling out to users of GitHub code scanning on github.com this week, and all new functionality will also be included in GHES 3.12. Users of GHES 3.11…
We’ve added new improvements to default setup, including automatically scheduling scans on repositories and support for all CodeQL covered languages.
Users of secret scanning will now receive alerts for any new secrets exposed in a pull request’s title, description, or comments (including reviews). Alerts can be viewed within the UI…
GitHub uses MySQL to store vast amounts of relational data. This is the story of how we seamlessly upgraded our production fleet to MySQL 8.0.
Read a roundup of the exciting, new innovation coming from GitHub Actions.
Using CVE-2023-43641 as an example, I’ll explain how to develop an exploit for a memory corruption vulnerability on Linux. The exploit has to bypass several mitigations to achieve code execution.
We are rolling out a few minor updates to the user experience for GitHub repositories starting today, in order to be more responsive, performant and more easily accessed by a…
Learn how we’re experimenting with generative AI models to extend GitHub Copilot across the developer lifecycle.
GitHub Enterprise Server 3.11 is generally available GitHub Enterprise Server 3.11 is now generally available. With this version, customers have access to tools and features that provide a better understanding…
Customers using GitHub Enterprise Server can gain more insight and understanding into the security of their code.
Learn how researchers and security experts at GitHub, Microsoft, and Santander came together to address the challenges presented by the post-quantum cryptography world.
Users of secret scanning can now view any new secrets exposed in a discussion’s title, description, or comments within the UI or the REST API. This expanded coverage will also…
The GitHub Security Lab examined the most popular open source software running on our home labs, with the aim of enhancing its security. Here’s what we found and what you can do to better protect your own smart home.
A GitHub codespace is a development environment provided by a container that runs on a virtual machine (VM). The development environment that the developer works within is defined by the…
GitHub Advanced Security users can now use the REST API to enable or disable secret scanning validity checks for a repository, organization, or enterprise. Validity checks retrieve a status for…
We have partnered with our sister team at Microsoft to bring some improvements to the NuGet ecosystem for Dependabot updates: Updater logic re-written in C#, making it easier for users…
Build what’s next on GitHub, the place for anyone from anywhere to build anything.
Join us October 28-29 in San Francisco or online for GitHub Universe, our flagship developer event uniting people, agents, and the world’s code.