Search results for: community

A comprehensive guide for vulnerability reporters.

Here’s January’s top staff picks on projects that shipped major version releases.

A quick guide on the advantages of using GitHub Actions as your preferred CI/CD tool—and how to build a CI/CD pipeline with it.

Along with the release of sponsors-only repositories, here’s a look at what’s new and what’s next for Sponsors.

You now have more control over when your self-hosted runners perform software updates. If you specify the –disableupdate flag to the runner then it will not try to perform an…

A deep dive into how GitHub adds support for new languages to CodeQL.

In GitHub’s latest transparency report, we’re giving you a by-the-numbers look at how we responded to requests for user info and content removal.

Learn new skills, build projects and meet like-minded students with the latest shows from the GitHub Education Stream Team.

You can now reference local reusable workflows more easily. With this release, reusable workflows that are in the same repository as the calling repository can be referenced with just the…

Our community has been hard at work through December shipping updates. Here’s our staff picks for open source projects with major version releases.

With the successful liftoff of the James Webb Space Telescope, we ask our very own Arfon Smith about the history of open source and space science.

From answering questions about a new release to fielding feature requests, here’s how five open source communities use GitHub Discussions.

My colleague Stormy Peters and I are proud to represent GitHub at the White House’s Open Source Software Security Summit.

Learn how the GitHub Mobile Team automates their release process with GitHub Actions.

The GitHub Classroom team is excited to announce our new experience for viewing information about your assignments! These changes will be gradually rolling out over the next week. The revamped…

GitHub was honored to contribute to the Santa Clara Principles on Transparency and Accountability in Content Moderation 2.0.

In this post, I’ll discuss how to apply OWASP Proactive Control C2: Leverage security frameworks and libraries.

Looking to avoid security vulnerabilities, buttons that don’t work, slow site speeds, or manually writing release notes? This one’s for you.

Defining your security requirements is the most important proactive control you can implement for your project. Here’s how.

On Thursday, December 9, 2021, GitHub was made aware of a vulnerability in the Log4j logging framework, CVE-2021-44228.

We shipped a ton of updates in November, from the push notification for PR review activities on the go, to an easy way to create Markdown links.