Search results for: graphQL

This marks 1️⃣ year since our initial private beta announcement! 🎉 Today’s Changelog brings you the ability to bulk add items to projects and GraphQL API improvements! 🪷 Bulk add…

Today’s Changelog brings you the release of project webhooks, a first exploration into templates and a host of improvements to GitHub Issues. ☁️🪝 Automate more with project webhooks The first…

A two-part story about how GitHub’s Product Security Engineering team rolled out Dependabot internally to track vulnerable dependencies, and how GitHub tracks and prioritizes technical debt.

Today’s Changelog brings you the release of issue closed reasons, project deletion, and availability of the new side-panel. 🕵🏽‍♀️ Issue closed reasons We announced a preview of issue closed reasons…

A new DependabotUpdate GraphQL object connects the relevant repository’s Dependabot alert(s) – aka vulnerabilityAlerts – to the Dependabot generated pull request or error. query($repo_owner:String!, $repo_name:String!) { repository(owner: $repo_owner, name: $repo_name)…

You can now reopen dismissed Dependabot alerts through the UI page for a closed alert. This update will not affect Dependabot pull requests or the GraphQL API. For more information,…

A CODEOWNERS file defines the users or teams responsible for different parts of your repository, and helps ensure the right people are included in pull request reviews. We’ve shipped some…

Today, we’re shipping improvements to Dependabot alerts that help you more easily understand and remediate vulnerabilities from dependencies in your codebase. Persisted Dependabot alerts Developers can now view alerts that…

Today, we’re shipping improvements to Dependabot alerts that make them easier to understand and remediate.

Here’s January’s top staff picks on projects that shipped major version releases.

When it comes to secure database access, there’s more to consider than SQL injections. OWASP Top 10 Proactive Control C3 offers guidance.

Members of GitHub Enterprise Cloud organizations belonging to an enterprise account can now view a list of their enterprise owners under the organization’s People tab. Whenever an organization member encounters…

A public beta of the new GitHub Issues, a “security manager” role for organizations, a command palette beta, and lots more.

On February 16, 2022, all non-audit-related npm Advisory APIs will be deprecated. Historically these undocumented APIs have been used to programmatically access advisory data. If you don’t use these APIs,…

What an incredible month it’s been for GitHub and our communities. Whilst we’ve been busy with GitHub Universe, our communities have been busy coding. It’s been a successful year for…

During Universe, we received a number of security questions ranging from our strategy to our advisories. Here’s what we’ve got planned!

Here are a few ways our teams use GitHub Discussions internally to build community, simplify workflows, and get key insights into our work.

It’s now possible to dismiss Dependabot alerts via the GraphQL API. For more info, see our docs.

Catch up on 44 ships, including a colorblind-accessible theme, a public README.md for organizations, and customization of code review settings.

You can now set whether a repository allows forking when creating or updating it using either the REST or GraphQL API. Previously, APIs for creating and updating repositories didn’t consider…

What did we ship in August? Codespaces, Discussions, and lots of other updates, from the general availability of the dark high contrast theme to an auto-generated table of contents for wikis.