Security overview dashboard: Alert age trends, custom repository and severity filters, and date pickers
Security overview dashboard: Alert age trends, custom repository and severity filters, and date pickers
Security overview dashboard: Alert age trends, custom repository and severity filters, and date pickers
OpenSSF Scorecard info is now available in the Dependency Review Action
Enablement trends for security products (public beta)
In February, we experienced two incidents that resulted in degraded performance across GitHub services.
While AI revolutionizes software development, it still relies on developers to pilot its use. In this blog, we’ll cover the skills that developers need to have for navigating this new AI-powered coding frontier.
Here’s how merge queue transformed the way GitHub deploys changes to production at scale, so you can do the same for your organization.
With this version, customers can choose how to best scale their security strategy, gain more control over deployments, and so much more.
The GitHub Enterprise Server 3.12 is generally available
Learn what GitHub Copilot can help your business achieve in this expert-guided GitHub Learning Pathway, featuring insights from tech leaders at top organizations.
Our most advanced AI offering to date is customized to your organization’s knowledge and codebase, infusing GitHub Copilot throughout the software development lifecycle.
Repo-jacking is a specific type of supply chain attack. This blog post explains what it is, what the risk is, and what you can do to stay safe.
Learn to find and fix security issues while having fun with Secure Code Game, now with new challenges focusing on JavaScript, Python, Go, and GitHub Actions!
The GitHub Enterprise Server 3.12 Release Candidate is available
A peek under the hood of GitHub Advanced Security code scanning autofix.
The npm engineering team recently transitioned to using GitHub Codespaces for local development for npm registry services. This shift to Codespaces has substantially reduced the friction of our inner development loop and boosted developer productivity.
More developers will have to fix security issues in the age of shifting left. Here, we break down how SAST tools can help them find and address vulnerabilities.
The Fundamentals program has helped us address tech debt, improve reliability, and enhance observability of our engineering systems.
Gradle starter workflows now automatically submit transitive dependencies
Consider deploying the GitHub Action: Evergreen so that you know each of your repositories are leveraging active dependency management with Dependabot.
Our latest solution to the ubiquitous engineering problem of integration testing in a distributed service ecosystem here at GitHub.
Build what’s next on GitHub, the place for anyone from anywhere to build anything.
Get tickets to the 10th anniversary of our global developer event on AI, DevEx, and security.