The latest blogs from GitHub

If there’s one habit that can make software more secure, it’s probably input validation. Here’s how to apply OWASP Proactive Control C5 (Validate All Inputs) to your code.

Our community has shipped lots of open source project updates in the last month. Here’s a few of our staff picks.

It is now possible to re-run only failed jobs or a single job in GitHub Actions workflows.

We’ve introduced several new features to help enterprise owners more easily manage their accounts, including two features now in public beta.

In February, we experienced one incident resulting in significant impact to multiple GitHub services.

As the global response to the tragedies in Ukraine and other impacted regions continues to evolve, I wanted to share with our community an expansion of the message that I shared earlier this week with our Hubbers.

Explore and understand your overall GitHub-hosted Actions runner capacity with the new runner view.

The ability to prebuild codespaces is entering public beta. Enable fast environment creation times, regardless of the size and complexity of your repositories.

GitHub Actions workflows in the Security category will now appear among the workflow recommendations based on a repository’s content.

Anyone can now provide additional information to further the community’s understanding and awareness of security advisories.

Today we launched new code scanning analysis features powered by machine learning. The experimental analysis finds more of the most common types of vulnerabilities.

A behind-the-scenes peek into the machine learning framework powering new code scanning security alerts.

Tips from our developer advocates on how and why to find a mentor.

Practical tips on how to apply OWASP Top 10 Proactive Control C4.

GitHub Enterprise Server 3.4 is now generally available for all customers. This release makes software development faster and more secure with new features like reusable workflows, Dependabot security updates, and GitHub Advanced Security enhancements.

Over the past year, the GitHub Stars have made a tremendous impact in the community with their influence, inspiring and building communities and creating content to help everyone.

The MLH Fellowship, powered by GitHub, is a 12-week internship alternative for aspiring software engineers. Meet the 2022 cohort!

A picture tells a thousand words. Now you can quickly create and edit diagrams in markdown using words with Mermaid support in your Markdown files.

Stop context switching. Keep your team’s project planning next to your code.

Reusable workflows offer a simple and powerful way to avoid copying and pasting workflows across your repositories.

A comprehensive guide for vulnerability reporters.