Search results for: repository

In this post, I’ll discuss how to apply OWASP Proactive Control C2: Leverage security frameworks and libraries.

When you want to create a workflow in the Actions tab of your repository, the recommendations are now based on an analysis of repo content.

Getting started with GitHub Actions just got easier! Now, when you want to create an Actions workflow in the Actions tab of your repository, the workflow recommendations will be based…

Today you will begin to see a new workflow running called pages build and deployment in your public GitHub Pages repositories. This workflow is automatically triggered when you push to…

Now, only admins can rename branches that are protected by branch protection rules. GitHub allows repository collaborators to rename every branch in a repository, with the exception of the default…

GitHub upgraded its OpenAPI description to the OpenAPI Specification (OAS) 3.1. Upgrading to OAS 3.1 will enable us to add GitHub Webhooks to the description, simplify the description of nullable…

Codespaces is a great tool for technical hiring exercises and helps level the playing field for candidates.

Following our last update, we have a number of exciting updates and improvements being released today for the new projects experience. 🔗 Stay in sync with linked pull requests One…

Looking to avoid security vulnerabilities, buttons that don’t work, slow site speeds, or manually writing release notes? This one’s for you.

Codespaces have been constrained to specific users or all members of an organization, which, while great for day-to-day software development, didn’t allow everyone in an organization to participate. That’s why…

This blog post tells the story of why we built a new search engine optimized for code.

Defining your security requirements is the most important proactive control you can implement for your project. Here’s how.

How to exploit a double-free vulnerability in Ubuntu’s accountsservice (CVE-2021-3939)

We shipped a ton of updates in November, from the push notification for PR review activities on the go, to an easy way to create Markdown links.

We have released improvements to the code scanning API: We’ve added the fixed_at timestamp to alerts. This is the first time that the alert was not detected in an analysis.…

Precise code navigation is powered by stack graphs, a new open source framework that lets you define the name binding rules for a programming language.

Code navigation is now available in PRs, and code navigation results for Python are now more precise.

Today, we are rolling out a technology preview for GitHub code search, the next iteration for search, discovery, and navigation on GitHub.

GitHub Enterprise Server is now generally available for all customers. This release improves performance for CI/CD and for customers with large repositories.

GitHub has partnered with the OpenSSF and Project Sigstore to add container image signing to our default “Publish Docker Container” workflow.

The end of the year is getting closer, and our communities are busy working away on their projects. While you’ve all been busy maintaining open source projects and shipping releases,…