Search results for: repository

GitHub Universe is almost here. For more on what to expect from this year’s stream, we sat down with virtual host, Brian Douglas, for a quick Q&A on GitHub Actions,…

To best apply DevSecOps principles to improve the security of your supply chain, you should ask your developers to declare your dependencies in code; and in turn provide your developers with maintained ‘golden’ artifacts and automated downstream actions so they can focus on code.

Dependabot already updates your public dependencies, such as open source dependencies from a public GitHub repository, npm, Maven Central, or similar. Now, you can also update dependencies from private GitHub…

You can now configure which events you would like to notified about on GitHub. Click ‘custom’ from the watch menu on any repository and select the types of events you…

Earlier this year, we upgraded the notifications experience on GitHub, focusing on filters that get you straight to the updates that matter most to you. Just last week, we shipped…

This blog describes a security vulnerability in the infrastructure that supports Germany’s COVID-19 contact tracing efforts. The mobile (Android/iOS) apps are not affected by the vulnerability and do not collect and/or transmit any personal data other than the device’s IP address. The infrastructure takes active measures to disassociate true positives from client IP addresses.

The GitHub Archive Program announces its latest milestone: storing collections of the most popular and depended upon open source repositories in beautiful art cases featuring 3D-printed and AI-generated artwork in significant libraries around the world.

As part of GitHub’s commitment to developers, we open source the policies that govern our platform and welcome feedback at any time in our site-policy repository. When we make material…

Today we reinstated youtube-dl, a popular project on GitHub, after we received additional information about the project that enabled us to reverse a Digital Millennium Copyright Act (DMCA) takedown. 

GitHub will recommend you unwatch repositories that you are no longer interacting with. You will see these recommendations when: You check your notifications on GitHub You search for notifications on…

The theme for this year’s Game Off is MOONSHOT.  moonshot – noun an extremely ambitious and innovative project the act of launching a spacecraft to the moon a hit or…

Along with the release of version 7 of the npm CLI, we have updated the npm documentation site to add the documentation for the new release. In addition, we’ve made…

GitHub Actions gives you the power to automate your workflow. Connect with the tools you know and love. Have more freedom to innovate and be creative. Deploy to any cloud,…

You can now use the –api-key command line option for publishing NuGet packages. This change allows you to pass your authentication token directly instead of storing it in the nuget.config…

Workflows using the ubuntu-latest runner label will soon run on Ubuntu-20.04. GitHub Actions has supported Ubuntu-20.04 in preview mode since June 2. During these past four months we have monitored…

macOS Big Sur, or 11.0, is now available in preview for GitHub Actions. Try it by setting runs-on: macos-11.0 in your workflow file. The MacOS 11.0 Big Sur virtual environment…

When a vulnerability is added to GitHub Advisory Database, the resulting Dependabot alert and security update notifications can be noisy. To help you focus on what matters, we’ve made a…

API Generally Available The GitHub Apps API for managing installations has now graduated from an API preview to a generally available API. The preview header is no longer required to…

Jump to definition and find all references are now available for all C# repositories on GitHub. When you view a C# file on github.com, you can click on a function…

The open source Git project just released Git 2.29 with features and bug fixes from over 89 contributors, 24 of them new. Last time we caught up with you, Git 2.28 had just been…

Dependabot version updates now run the go mod tidy command during every update, which helps keep your go.mod file well-organized and free of stale module versions. If your repository vendors…