Search results for: Security

Now you can sync groups across Azure Active Directory and GitHub teams with team synchronization for GitHub Enterprise Cloud.

Software security is a collective problem, a responsibility that involves producers and consumers of code, open source maintainers, security researchers, and security teams. At GitHub, we want to give the community the tools it needs to secure the software we all depend on.

Today we’re announcing a big step in securing the open source supply chain: we’re welcoming Semmle to the GitHub.

The dependency graph is rolling out for all PHP repositories with Composer dependencies. In addition to Composer, GitHub supports package managers for many other programming languages, including Maven, NPM, Yarn, and Nuget.  

Sanctions impact both developers and the global open source community. Read more about how US trade sanctions affect GitHub—and how we’re advocating for as much access to code and collaboration as possible.

On August 26, 2019, the GitHub application was deployed to production with 100% of traffic on the newest Rails version: 6.0. Read more about our process for upgrading, what we learned, and what’s next.

GitHub Enterprise Cloud recently finished a security audit with the release of SOC 1 and 2 Type 2 reports.

The dependency graph now supports .vcxproj and .fsproj files that list NuGet dependencies in their PackageReference section. .NET repositories with these formats will start to see dependency graph updates and…

Check out our GitHub Internship series brought to you by our 2019 summer interns. In this post, Philip Dumaresq shares his experience building a Learning Lab API.

See what’s new for project management, security, and the developer experience with our latest Enterprise Server release.

Token scanning has reached a new milestone: one billion tokens identified. We’ve also added five new partners—Atlassian, Dropbox, Discord, Proctorio, and Pulumi.

The Audit Log GraphQL API is now generally available. With this update, GitHub Enterprise Cloud administrators can programmatically access audit log events for detailed security and compliance insights across their…

Enterprise and organization admins can now register their SSH certificate authorities with GitHub, helping their team access repositories over Git using SSH certificates.

We’re sharing interviews from several open source contributors about their projects, challenges, and what a GitHub sponsorship means to them. This week, hear from Chrissy LeMaire.

We’re celebrating an exciting milestone with one million Dependabot pull requests merged.

We’re sharing interviews from several open source contributors about their projects, challenges, and what a GitHub sponsorship means to them. This week, hear from Fatih Arslan.

To make language detection more robust and maintainable in the long run, we developed a machine learning classifier named OctoLingua based on an Artificial Neural Network (ANN) architecture which can handle language predictions in tricky scenarios.

We’re sharing interviews from several open source contributors about their projects, challenges, and what a GitHub sponsorship means to them. This week, hear from Daniel Stenberg.

We’re sharing interviews from several open source contributors about their projects, challenges, and what a GitHub sponsorship means to them. This week, read about Russ Magee.

We’re sharing interviews from several open source contributors about their projects, challenges, and what a GitHub sponsorship means to them. This week, read about Henry Zhu.

We’re sharing interviews from several open source contributors about their projects, challenges, and what a GitHub sponsorship means to them. This week, read about Siân Griffin.