Search results for: Security

The GitHub Workplace Experience team weighs in on how to get creative during COVID-19 and what the future holds.

GitHub Actions allows you to automate your workflow. With GitHub Actions, you can deploy to any cloud, build containers, automate messages, and do so much more. Use any tool you…

The 2.21 release of GitHub Enterprise Server is now available for download. The latest release includes powerful new pull request features, a brand new notifications experience, and changes to issues…

GitHub Enterprise Server 2.21 is now available with updates to simplify collaboration, increase reliability and improve security.

Since our acquisition of Dependabot last year, we’ve been building its functionality directly into GitHub. This includes two main features: Dependabot security updates are automated pull requests that help you…

Keeping your dependencies updated is one of the easiest ways to keep the software you build secure. However, while it’s critically important to keep your dependencies updated, in a recent…

This post details how an open source supply chain malware spread through build artifacts. 26 open source projects were backdoored by this malware and were actively serving backdoored code.

Now you can define secrets for an organization, making it easier to keep secrets synced across multiple repositories.

We examine the dangers of network integer arithmetic based on a case study of security vulnerabilities reported to the ntop project.

Join our Capture the Flag challenge to use your CodeQL skills or learn new ones.

See what we announced at our first virtual GitHub Satellite including a full dev environment on GitHub powered by VS Code, a new way to have discussions with your communities, new ways to secure projects with code scanning and secret scanning, and more.

Make better contributions, triage your issues efficiently, save time with saved replies, and more with @bdougie’s protips.

By prioritizing secure development alongside speed, DevSecOps helps you ship safer applications by making security part of your current DevOps pipeline.

GitHub Actions continues its community momentum and ships new features for enterprises and developers.

GitHub Satellite is back, and this year it’s virtual. Tune in at githubsatellite.com on May 6 at 9 am PT / 12 pm ET to hear from CEO Nat Friedman and developers around the world.

Learn more about the security vulnerabilities affecting Git 2.26.1 and older.

A phishing campaign targeting our customers lures GitHub users into providing their credentials (including two-factor authentication codes). Learn more about the threat and what you can do to protect yourself.

Learn more about the security vulnerabilities affecting Git 2.26 and older.

Token leaks are one of the most common security mistakes, and they can have disastrous consequences. GitHub token scanning looks for leaked tokens in public repositories and works with the…

Token leaks are one of the most common security mistakes, and they can have disastrous consequences. GitHub token scanning looks for leaked tokens in public repositories and works with the…

We’re excited to announce that npm will be joining GitHub.