Search results for: community

Create a tamper-proof papertrail for anything you build on Actions Artifact Attestations lets you sign builds in GitHub Actions, capturing provenance information about the artifact and making it verifiable from…

Generate and verify signed attestations for anything you make with GitHub Actions.

A11y Design Bootcamp is a live educational program that consists of exercises, discussions, and knowledge shares to raise awareness of web accessibility best practices, the role designers play in creating accessible products, and how to advocate for accessibility with cross-functional partners.

As part of GitHub’s dedication to accessibility, we expanded our internal accessibility program and scaled up our assessment process to help remove or lower barriers for users with disabilities. Then, we empowered employees from various disciplines to drive accessibility efforts within their teams.

From mastering prompt engineering to leveraging AI for code security, here’s how you can excel in today’s competitive job market.

For GitHub Advanced Security customers that use secret scanning, you can now specify which teams or roles have the ability to bypass push protection. This feature is in public beta…

We recently shipped several changes to improve the Actions user experience. These changes include adding backscroll to the Actions streaming logs and workflow pinning. Actions streaming logs with backscroll is…

GitHub is working with the OSS community to bring new supply chain security capabilities to the platform.

Another month means more exciting updates to GitHub Copilot Enterprise! 📆 Check out what’s new below: Ask Copilot Chat in GitHub.com to summarize and answer questions about specific issues: Copilot…

Repository Updates April 30th, 2024 Deploy keys are now supported as a bypass actor in repository rules, allowing additional granularity for your automations. Previously for deploy keys to bypass a…

The code scanning option for repository rules is now available in public beta. Code scanning users can now create a dedicated code scanning rule to block pull request merges, instead…

Learn how to use CodeQL for security research and improve your security research workflow.

For enterprise owners and security managers dedicated to managing security products, we are excited to announce a new capability: you can now gain historical insights into security products enablement trends…

The new deployment views across environments are now generally available (GA)! 🎉 Previously we have shipped dashboard views to track your deployments using GitHub Actions across various environments. These views…

Today’s changelog brings you a new workflow to auto-close issues in Projects! 🪄 Auto-close issue project workflow The auto-close issue workflow allows you to automatically close issues when their project…

We’ve dramatically increased 2FA adoption on GitHub as part of our responsibility to make the software ecosystem more secure. Read on to learn how we secured millions of developers and why we’re urging more organizations to join us in these efforts.

We’re excited to announce the public beta of the GitHub Copilot Metrics API, available to all customers of GitHub Copilot Business and GitHub Copilot Enterprise starting today. The GitHub Copilot…

Starting today, developers using GitHub Enterprise Cloud (GHEC) and Free, Pro, and Teams accounts can enable their repositories and/or organizations to run Dependabot updates as an Actions workflow. With this…

This Earth Day, we discuss how tech and open source are helping two organizations combat the effects of a changing climate.

We’re asking for feedback on a proposed Acceptable Use Policy update to address the use of synthetic and manipulated media tools for non-consensual intimate imagery and disinformation while protecting valuable research.

Say goodbye to unwanted files cluttering your repos, like *.jar or *.so. And limit who can make updates to sensitive files like your Actions workflows with the public beta of…