Source Control

How to build secure and scalable remote MCP servers
More context can mean more attack surfaces for your projects. Be prepared for what lies ahead with this guide. The post How to build secure and scalable remote MCP servers appeared first on The GitHub Blog.
2025-07-25 17:12
local_offer
How to streamline GitHub API calls in Azure Pipelines
Build a custom Azure DevOps extension that eliminates the complexity of JWT generation and token management, enabling powerful automation and enhanced security controls. The post How to streamline GitHub API calls in Azure Pipelines appeared first on T...
2025-07-24 16:00
local_offer
Solving the inference problem for open source AI projects with GitHub Models
How using GitHub’s free inference API can make your AI-powered open source software more accessible. The post Solving the inference problem for open source AI projects with GitHub Models appeared first on The GitHub Blog.
2025-07-23 16:00
local_offer
We need a European Sovereign Tech Fund
Open source software is critical infrastructure, but it’s underfunded. With a new feasibility study, GitHub’s developer policy team is building a coalition of policymakers and industry to close the maintenance funding gap. The post We need a Europe...
2025-07-23 07:01
local_offer
Debugging UI with AI: GitHub Copilot agent mode meets MCP servers
Explore how I use agentic tools like GitHub Copilot agent mode and the Playwright MCP server to accelerate troubleshooting and debugging of UI issues, while revisiting the importance of clear requirements. The post Debugging UI with AI: GitHub Copilot ...
2025-07-22 21:58
local_offer
GitHub Availability Report: June 2025
In June, we experienced three incidents that resulted in degraded performance across GitHub services. The post GitHub Availability Report: June 2025 appeared first on The GitHub Blog.
2025-07-16 21:06
local_offer
How to catch GitHub Actions workflow injections before attackers do
Strengthen your repositories against actions workflow injections — one of the most common vulnerabilities. The post How to catch GitHub Actions workflow injections before attackers do appeared first on The GitHub Blog.
2025-07-16 16:00
local_offer
For the Love of Code: a summer hackathon for joyful, ridiculous, and wildly creative projects
That idea you've been sitting on? The domain you bought at 2AM? A silly or serious side project? This summer, we invite you to build it — for the joy, for the vibes, For the Love of Code 🧡 The post For the Love of Code: a summer hackathon for joyf...
2025-07-16 15:00
local_offer
From chaos to clarity: Using GitHub Copilot agents to improve developer workflows
Explore how you can set Copilot coding agent up for success with custom instruction and Copilot setup steps. The post From chaos to clarity: Using GitHub Copilot agents to improve developer workflows appeared first on The GitHub Blog.
2025-07-15 16:00
local_offer
Code review in the age of AI: Why developers will always own the merge button
When it comes to merging code, developers will always make the final decision. But we’re rethinking how tools like GitHub Copilot can help. The post Code review in the age of AI: Why developers will always own the merge button appeared first on The G...
2025-07-14 16:38
local_offer
Modeling CORS frameworks with CodeQL to find security vulnerabilities
Discover how to increase the coverage of your CodeQL CORS security by modeling developer headers and frameworks. The post Modeling CORS frameworks with CodeQL to find security vulnerabilities appeared first on The GitHub Blog.
2025-07-10 17:38
local_offer
Beyond prompt crafting: How to be a better partner for your AI pair programmer
Ensuring quality code suggestions from Copilot goes beyond the perfect prompt. Context is key to success when working with your AI pair programmer. The post Beyond prompt crafting: How to be a better partner for your AI pair programmer appeared first o...
2025-07-09 16:00
local_offer
Git security vulnerabilities announced
Today, the Git project released new versions to address seven security vulnerabilities that affect all prior versions of Git. The post Git security vulnerabilities announced appeared first on The GitHub Blog.
2025-07-08 17:02
local_offer
CVE-2025-53367: An exploitable out-of-bounds write in DjVuLibre
DjVuLibre has a vulnerability that could enable an attacker to gain code execution on a Linux Desktop system when the user tries to open a crafted document. The post CVE-2025-53367: An exploitable out-of-bounds write in DjVuLibre appeared first on The ...
2025-07-03 20:52
local_offer
5 ways to transform your workflow using GitHub Copilot and MCP
Learn how to streamline your development workflow with five different MCP use cases. The post 5 ways to transform your workflow using GitHub Copilot and MCP appeared first on The GitHub Blog.
2025-07-02 17:44
local_offer
From idea to PR: A guide to GitHub Copilot’s agentic workflows
A practical guide to GitHub Copilot’s agentic coding agent, chat modes, and remote MCP server so you turn issues into tested PRs with clear steps (and no hype). The post From idea to PR: A guide to GitHub Copilot’s agentic workflows appeared first ...
2025-07-01 18:57
local_offer
Understand your software’s supply chain with GitHub’s dependency graph
The GitHub dependency graph maps every direct and transitive dependency in your project, so you can identify risks, prioritize fixes, and keep your code secure. The post Understand your software’s supply chain with GitHub’s dependency graph appeare...
2025-07-01 16:00
local_offer
GitHub Advisory Database by the numbers: Known security vulnerabilities and what you can do about them
Use these insights to automate software security (where possible) to keep your projects safe. The post GitHub Advisory Database by the numbers: Known security vulnerabilities and what you can do about them appeared first on The GitHub Blog.
2025-06-27 16:00
local_offer
From pair to peer programmer: Our vision for agentic workflows in GitHub Copilot
AI agents in GitHub Copilot don’t just assist developers but actively solve problems through multi-step reasoning and execution. Here’s what that means. The post From pair to peer programmer: Our vision for agentic workflows in GitHub Copilot appea...
2025-06-25 16:00
local_offer
Why developer expertise matters more than ever in the age of AI
AI can help you code faster, but knowing why the code works—and sharpening your human-in-the-loop skills—is what makes you a great developer. The post Why developer expertise matters more than ever in the age of AI appeared first on The GitHub Blog.
2025-06-24 17:04
local_offer