Search results for: repository

GitHub secret scanning protects users by searching repositories for known types of secrets. By identifying and flagging these secrets, our scans may prevent data leaks and any fraud associated with…

Dotfiles are a common way to specify custom, user-specific behavior for applications (like Vim or Emacs) and shells on your codespaces. If enabled, dotfiles stored in a user’s public dotfiles…

You can multiply the impact of your domain experts by building their common workflows into ChatOps.

GitHub Advanced Security customers can now use the GitHub REST API to retrieve commit details of secrets detected in private repository scans. Now available on cloud, the new endpoint will…

You can now control which GitHub App a required status check is provided by. If status is then provided by a different app or by a user via a commit…

It is now possible to list, add, and remove runner labels for Actions self-hosted runners via API. For more info on using the new APIs at a repository, organization, or…

You can now run workflows for Python projects faster on GitHub Actions by enabling dependency caching on the setup-python action. setup-python supports caching for both pip and pipenv projects. The…

OSS-Fuzz is Google’s awesome fuzzing service for open source projects. GitHub Security Lab’s @kevinbackhouse describes enrolling a project.

The latest release of the CodeQL CLI supports including markdown-rendered query help in SARIF files so that the help text can be viewed in the code scanning UI. This functionality…

The GitHub Services Engineers have released the Advanced Security Enforcer GitHub Action to enable organizations to utilize code scanning in a consistent and automated way.

A public beta of the new GitHub Issues, a “security manager” role for organizations, a command palette beta, and lots more.

Administrators can now allow specific users and teams to bypass pull request requirements. For context, this image shows how administrators can use branch protections to require pull requests for all…

GitHub puts the needs of developers at the core of our content moderation policies. Learn more about our approach and how you can contribute.

All newly created GraphQL objects now have IDs that conform to a new format, which we refer to as “next IDs.” Learn how to migrate older IDs to the new format and why we’re making the change.

The Exiv2 team tightened our security by enabling GitHub’s code scanning feature and adding custom queries tailored to the Exiv2 code base.

To celebrate this most recent release, here’s GitHub’s look at some of the most interesting features and changes introduced since last time.

During Universe, we received a number of security questions ranging from our strategy to our advisories. Here’s what we’ve got planned!

You can now export your Advanced Security license data to review usage across your business. The CSV data can be downloaded at both enterprise and organization level, and contains: the…

Here are a few ways our teams use GitHub Discussions internally to build community, simplify workflows, and get key insights into our work.

The new sparse index feature makes it feel like you are working in a small repository when working in a focused portion of a monorepo.

You can now require that all changes to a protected branch are made using a pull request, but without requiring reviews. This can be useful when you want to use…