The latest blogs from GitHub

With push protection now enabled by default, GitHub helps open source developers safeguard their secrets, and their reputations.

Learn how your organization can customize its LLM-based solution through retrieval augmented generation and fine-tuning.

Learn how we’re managing feature releases and establishing best practices within and across teams at GitHub using GitHub Projects.

Our most advanced AI offering to date is customized to your organization’s knowledge and codebase, infusing GitHub Copilot throughout the software development lifecycle.

The first Git release of 2024 is here! Take a look at some of our highlights on what’s new in Git 2.44.

Explore the capabilities and benefits of AI code generation, and how it can improve the developer experience for your enterprise.

Whether you’re coding up a storm or cooking up code, building a controller function with AI is your secret sauce to a flavorful app.

Repo-jacking is a specific type of supply chain attack. This blog post explains what it is, what the risk is, and what you can do to stay safe.

GitHub has been awarded the 2024 Axe Accessibility at Scale Award from Deque Systems. Read more about how we’ve implemented accessibility at scale.

Learn to find and fix security issues while having fun with Secure Code Game, now with new challenges focusing on JavaScript, Python, Go, and GitHub Actions!

In January, we experienced three incidents that resulted in degraded performance across GitHub services.

A peek under the hood of GitHub Advanced Security code scanning autofix.

The npm engineering team recently transitioned to using GitHub Codespaces for local development for npm registry services. This shift to Codespaces has substantially reduced the friction of our inner development loop and boosted developer productivity.

Funding AI advancements in the open, and opening applications for second Accelerator cohort.

We listened to your feedback and released new versions (v4) of actions/upload-artifact and actions/download-artifact. While this version of the actions to upload and download artifacts includes up to 10x performance improvements and several new features, there are also key differences from previous versions that may require updates to your workflows.

More developers will have to fix security issues in the age of shifting left. Here, we break down how SAST tools can help them find and address vulnerabilities.

Experience AI-powered assistance for queries related to GitHub topics.

The Fundamentals program has helped us address tech debt, improve reliability, and enhance observability of our engineering systems.

In practice, shifting left has been more about shifting the burden rather than the ability. But AI is bringing its promise closer to reality. Here’s how.

Get excited for this month’s Release Radar. Maintainers were hard at work this past month, shipping major updates for you all. Read on for our top staff picks.

Consider deploying the GitHub Action: Evergreen so that you know each of your repositories are leveraging active dependency management with Dependabot.