Fine-tune access to external actions
Limit use of external actions within Actions workflow for enterprises, organizations, and repositories.
GitHub Blog Search
Search Results for: Security
GitHub Actions: Deprecating set-env and add-path commands
GitHub Actions: Deprecating set-env and add-path commands
GitHub Actions: Fine-tune access to external actions
GitHub Actions: Fine-tune access to external actions
GitHub Welcomes the OpenJDK Project!
Earlier this month we were thrilled to welcome the OpenJDK Community to GitHub. The communities migration effort, codenamed Project ‘Skara’, brought JDK 16 main-line development into GitHub. The JDK project is at the…
Code scanning is now available!
Now available, code scanning is a developer-first, GitHub-native approach to easily find security vulnerabilities before they reach production.
Phishing Resistant SMS Autofill
We recently shipped support for the origin-bound draft standard for security codes delivered via SMS. This standard ensures security codes are entered in a phishing-resistant manner. It accomplishes this by binding an SMS with…
Remote Education: Creating community through shared experiences
Remote Education explores the challenges of organizing student communities and events online. We’ll be speaking with event organizers and community leaders in the industry and academics each week to help…
Lightning Q&A: DevSecOps in five with Maya Kaczorowski
In this interview, we dig deeper with Maya Kaczorowski on what DevSecOps is, and how to apply it. It’s a mindset shift in how development teams think about security. DevSecOps is about making all parties who are part of the application development lifecycle accountable for security of the application.
GitHub Enterprise Server 2.22 is here
GitHub Enterprise Server 2.22 is now here with GitHub Actions, Packages and Advanced Security Code Scanning available for the very first time.
Join us for OctogatosConf
A free two-day single track conference live on September 24 - 25, 2020 in celebration of our culture and LatinX heritage month. You will join a live stream of interactive talks by industry experts in both Spanish, Portuguese and English, with live captioning and translation. Topics will include software development, security, technical project management, civic tech, open source, professional development and best practices.
We are excited to announce our next event for Latin America, GitHub ¡Presente! In Spanish
Lee este artículo en español Estamos muy entusiasmados en anunciar nuestro siguiente evento virtual en América Latina: GitHub ¡Presente! en Español El primer evento será el Martes 22 de Septiembre…
About Codespaces pricing
In May, we announced the beta release of GitHub Codespaces, a cloud development environment that lets you code from anywhere. Thousands of users are using Codespaces to improve collaboration, onboard faster,…
Release Radar · September 2020 Edition
It's back! We're here to bring you the latest and greatest releases for September 2020. These are exciting new releases from some of the coolest projects around. There's everything from…
GitHub Africa Virtual Meetup
The developer community in Africa continues to thrive. Here at GitHub, we're excited to announce our first Virtual Meetup for African developers. This meetup is happening on Tuesday, September 15th,…
How we threat model
At GitHub, we spend a lot of time thinking about and building secure products—and one key facet of that is threat modeling. This practice involves bringing security and engineering teams…
Ready to vote in the U.S. 2020 elections?
Register, vote, and volunteer to make an impact during the U.S. 2020 elections.