Search results for: repository

GitHub Advanced Security customers can now retrieve repository code scanning results at the enterprise level via the GitHub REST API. This new endpoint supplements the existing repository-level and organization-level endpoints.…

July’s Open Source Monthly features Zag.js, which leverages state machines to make framework agnostic components.

Dependabot alerts will now be easier to prioritize with a new “Most Important” sort. For the alerts repository list view, by default, alerts will be sorted in a way to…

GitHub secret scanning protects users by searching repositories for known types of secrets. By identifying and flagging these secrets, our scans help prevent data leaks and fraud. We have partnered…

GitHub secret scanning protects users by searching repositories for known types of secrets. By identifying and flagging these secrets, our scans help prevent data leaks and fraud. We have partnered…

Read about the six key themes, and tips for each, that ensure sustainable and healthy open source communities.

A Little Game Called Mario is an open source, collectively developed hell project. Anyone and everyone is welcome to contribute their unique talents to make both the player and developer experience more enjoyable. Find out how the collective leverages GitHub Actions to manage this wonderful little community.

New Actions from Anchore, NowSecure, SBT, and Trivy are now available to create a more comprehensive GitHub Dependency Graph.

Can projects and GitHub Actions be used by your non-developer teams? They absolutely can. Check out how our Security Team uses GitHub to run the department effortlessly.

Previously, when creating an autolink reference for a repository, you could only use a numeric identifier in the <num> parameter. This format didn’t support integration with platforms that use alphanumeric…

High-quality Git commits are the key to a maintainable and collaborative open- or closed-source project. Learn strategies to improve and use commits to streamline your development process.

When using the GraphQL API, you can now filter Dependabot alerts by the scope of the dependency affected. The possible scopes are DEVELOPMENT or RUNTIME. Dependency scope information is available…

Monorepo performance can suffer due to the sheer number of files in your working directory. Git’s new builtin file system monitor makes it easy to speed up monorepo performance.

Previously, three aspects of repository forks caused friction to innersource collaboration and administration: Repositories could not be forked within a single organization. Repositories with internal visibility could not be forked…

The GitHub Advisory Database now includes curated security advisories on Erlang [Hex], Elixir, and more. This brings the Advisory Database to nine supported ecosystems, including: Composer, Go, Maven, npm, NuGet,…

We’re excited to announce that the GitHub Advisory Database now includes curated security advisories on Erlang, Elixir, and more.

The open source Git project just released Git 2.37. Take a look at some of our highlights from the latest release.

You can now get more transparency and control over dependency caching in your actions workflows. Actions users who use actions/cache to make jobs faster on GitHub Actions can now use…

Today, we’re releasing capabilities that will enable developers and organizations to efficiently manage and confidently scale with Codespaces. Retention setting for all individuals To enable auto-cleanup of unused codespaces, inactive…

This marks 1️⃣ year since our initial private beta announcement! 🎉 Today’s Changelog brings you the ability to bulk add items to projects and GraphQL API improvements! 🪷 Bulk add…

GitHub Advanced Security customers can now use cursors to paginate over alert results they retrieve via the repository and organization level REST APIs. Paginating with cursors, using the new before…