CodeQL code scanning now supports Java 16 language features
CodeQL code scanning now supports Java 16 language features
Home / You searched for Security / Blog Search
Search results for: Security
Apache Dubbo: All roads lead to RCE
During an audit of Apache Dubbo v2.7.8 source code, I found multiple vulnerabilities enabling attackers to compromise and run arbitrary system commands on both Dubbo consumers and providers. In this blog post I detailed how I leveraged CodeQL as an audit oracle to help me find these issues.
Secret scanning: user-defined patterns now support editing
Secret scanning: user-defined patterns now support editing
Audit log streaming is now in public beta
If you’re a GitHub Enterprise Cloud customer, you can now set up a stream of audit log and Git events to Splunk or an Azure Event Hub.
Contributed Systems is now a GitHub secret scanning partner
Contributed Systems is now a GitHub secret scanning partner
What’s new from GitHub Changelog? August 2021 Recap
What did we ship in August? Codespaces, Discussions, and lots of other updates, from the general availability of the dark high contrast theme to an auto-generated table of contents for wikis.
View secret scanning alerts across an organization
View secret scanning alerts across an organization
The GitHub Enterprise Server 3.2 Release Candidate is available
The GitHub Enterprise Server 3.2 Release Candidate is available
Increasing developer happiness with GitHub code scanning
How GitHub uses code scanning to increase developer happiness, and how you can too.
Release Radar · August 2021 Edition
The end of financial year is complete, tax time is over, and everyone is back to shipping awesome projects. During August, our community has been super busy shipping lots of…
Introducing GitHub Global Campus
Calling all students! Get the most out of your GitHub Education experience by joining the GitHub student community on our new digital campus.
2021 Transparency Report: January to June
We’re reporting on a six-month period rather than annually to increase our level of transparency. For this report, we’ve added more granularity to our 2020 stats.
PlanetScale is now a GitHub secret scanning partner
PlanetScale is now a GitHub secret scanning partner
The npm registry is deprecating TLS 1.0 and TLS 1.1
Beginning October 4, 2021, all connections to npm websites and the npm registry, including for package installation, must use TLS 1.2 or higher.
Highlights from Git 2.33
The open source Git project just released Git 2.33, with features and bug fixes from over 74 contributors. Here’s a look at some of the most interesting features and changes.
Securing your GitHub account with two-factor authentication
The benefits of multifactor authentication are widely documented, and there are a number of options for using 2FA on GitHub.
What’s new from GitHub Changelog? July 2021 Recap
A public beta for CodeQL package manager, additional options to manage Actions runs from first-time contributors, GitHub Discussions translation, and more.
GitHub Actions: Self-hosted runner events are now included in the Audit Log
GitHub Actions: Self-hosted runner events are now included in the Audit Log
The world's largest developer platform
GitHub
Build what’s next on GitHub, the place for anyone from anywhere to build anything.
