Search results for: graphQL

CodeQL is the static analysis engine behind GitHub code scanning, which finds and remediates security issues in your code. We’ve recently released CodeQL 2.23.2, which introduces a new Rust security…

I coded my latest app entirely in Markdown and let GitHub Copilot compile it into Go. This resulted in cleaner specs, faster iteration, and no more context loss. ✨

Dependencies on issues are now generally available! You can now specify which issues are blocked by or blocking others, making it easy for teams to define work that must be…

The remote GitHub MCP server now scans all of its tool call inputs in public repositories. If an exposed secret is detected, the call is blocked by default with clear…

Learn how maintainers are using the GitHub MCP Server and what they are building in this episode of the GitHub Podcast.

Build a custom Azure DevOps extension that eliminates the complexity of JWT generation and token management, enabling powerful automation and enhanced security controls.

At GitHub, we’re always working to make our GraphQL API more reliable for everyone. With that in mind, we’ve made a recent change: request timeouts will now count against your…

Stay in flow with the latest updates to GitHub Issues and Projects. You can now duplicate issues across repositories and start new issues from anywhere in the GitHub UI. These…

GitHub Apps can now be installed onto enterprise accounts, with new permissions that let them call enterprise management APIs. The public preview of this new access pattern has a limited…

Stricter requirements are being enforced for application authentication and cross-organization access

The ability to allow enterprise administrators to see and manage repositories in the user namespace of Enterprise Managed Users (EMU) is now generally available. This feature set increases visibility of…

GitHub Team plans can now configure and enforce organization-level rulesets! Previously, this powerful governance capability was limited to Enterprise plans, but now Team plan customers can scale their use of…

GitHub now automatically computes and displays SHA256 checksums (digests) for all uploaded release assets. These digests are generated at upload time, immutable, and let you verify that downloaded assets haven’t…

Get insights on the latest trends from GitHub experts while catching up on these exciting new projects.

Plus, considerations in updating one of GitHub’s oldest and most heavily used features.

CodeQL version 2.21.0 has been released and includes TypeScript 5.8 support, a new Java query to detect exposed Spring Boot actuators, and support for new JavaScript libraries. TypeScript 5.8 support…

Explore the iterative development journey of GitHub’s sub-issues feature. Learn how we leveraged sub-issues to build and refine sub-issues, breaking down larger tasks into smaller, manageable ones.

GitHub’s dependency graph now supports a wider range of package ecosystems, including transitive path information and the registered name of the ecosystem. This change increases the accuracy and usefulness of…

Enterprise Cloud Importer (ECI) and the GraphQL endpoints for importing migration data to GitHub Enterprise Cloud (GHEC) from an archive will be closing down today, March 31, 2025. These tools…

The cvss field for GitHub security advisories in the REST and GraphQL APIs will be deprecated in favor of the new cvss_severities field. cvss will be removed from the REST…

Following the ship of transitive labeling for npm packages, the same capabilities are now available for Maven packages: Dependabot alerts now contain a direct label if they are associated with…