Source Control

How to request a change to a CVE record
Learn how to identify which CVE Numbering Authority is responsible for the record, how to contact them, and what to include with your suggestion. The post How to request a change to a CVE record appeared first on The GitHub Blog.
2025-04-09 20:02
local_offer
Found means fixed: Reduce security debt at scale with GitHub security campaigns
Starting today, security campaigns are generally available for all GitHub Advanced Security and GitHub Code Security customers—helping organizations take control of their security debt and manage risk by unlocking collaboration between developers and...
2025-04-08 16:00
local_offer
Git turns 20: A Q&A with Linus Torvalds
To celebrate two decades of Git, we sat down with Linus Torvalds—the creator of Git and Linux—to discuss how it forever changed software development. The post Git turns 20: A Q&A with Linus Torvalds appeared first on The GitHub Blog.
2025-04-07 22:58
local_offer
Vibe coding with GitHub Copilot: Agent mode and MCP support rolling out to all VS Code users
In celebration of MSFT’s 50th anniversary, we’re rolling out Agent Mode with MCP support to all VS Code users. We are also announcing the new GitHub Copilot Pro+ plan w/ premium requests, the general availability of models from Anthropic, Google, a...
2025-04-04 16:25
local_offer
Localhost dangers: CORS and DNS rebinding
What is CORS and how can a CORS misconfiguration lead to security issues? In this blog post, we’ll describe some common CORS issues as well as how you can find and fix them. The post Localhost dangers: CORS and DNS rebinding appeared first on The Git...
2025-04-03 16:00
local_offer
GitHub found 39M secret leaks in 2024. Here’s what we’re doing to help
Every minute, GitHub blocks several secrets with push protection—but secret leaks still remain one of the most common causes of security incidents. Learn how GitHub is making it easier to protect yourself from exposed secrets, including today’s lau...
2025-04-01 16:06
local_offer
GitHub for Beginners: How to get LLMs to do what you want
Learn how to write effective prompts and troubleshoot results in this installment of our GitHub for Beginners series. The post GitHub for Beginners: How to get LLMs to do what you want appeared first on The GitHub Blog.
2025-03-31 13:00
local_offer
5 GitHub Actions every maintainer needs to know
With these actions, you can keep your open source projects organized, minimize repetitive and manual tasks, and focus more on writing code. The post 5 GitHub Actions every maintainer needs to know appeared first on The GitHub Blog.
2025-03-27 16:00
local_offer
How engineers can use one-on-ones with their manager to accelerate career growth
Go beyond status updates and use these meetings to surface challenges, solve problems, and drive impact. The post How engineers can use one-on-ones with their manager to accelerate career growth appeared first on The GitHub Blog.
2025-03-27 15:31
local_offer
Mastering GitHub Copilot: When to use AI agent mode
Discover the differences between agent mode and Copilot Edits with GitHub Copilot—and when to use them in your workflows. The post Mastering GitHub Copilot: When to use AI agent mode appeared first on The GitHub Blog.
2025-03-25 16:00
local_offer
A maintainer’s guide to vulnerability disclosure: GitHub tools to make it simple
A step-by-step guide for open source maintainers on how to handle vulnerability reports confidently from the start. The post A maintainer’s guide to vulnerability disclosure: GitHub tools to make it simple appeared first on The GitHub Blog.
2025-03-24 16:00
local_offer
World Water Day: how GitHub Copilot is helping bring clean water to communities
From simplifying the workflow of a developer to having an impact on the global water crisis, technology and AI are reshaping the way charity: water works. The post World Water Day: how GitHub Copilot is helping bring clean water to communities appeared...
2025-03-20 16:00
local_offer
Video: How to create checklists in Markdown for easier task tracking
Ever wondered how to create checklists in your GitHub repositories, Issues, and PRs? Make task lists more manageable in your GitHub repositories, issues, and pull requests. The post Video: How to create checklists in Markdown for easier task tracking a...
2025-03-19 17:06
local_offer
IssueOps: Automate CI/CD (and more!) with GitHub Issues and Actions
A look into building IssueOps workflows on GitHub to do everything from CI/CD to handling approvals and more. The post IssueOps: Automate CI/CD (and more!) with GitHub Issues and Actions appeared first on The GitHub Blog.
2025-03-19 16:00
local_offer
GitHub for Beginners: Essential features of GitHub Copilot
Get the most out of Copilot with code completion, inline chat, slash commands, Copilot code review, and more. The post GitHub for Beginners: Essential features of GitHub Copilot appeared first on The GitHub Blog.
2025-03-17 13:00
local_offer
Highlights from Git 2.49
The open source Git project just released Git 2.49. Here is GitHub’s look at some of the most interesting features and changes introduced since last time. The post Highlights from Git 2.49 appeared first on The GitHub Blog.
2025-03-14 17:19
local_offer
How GitHub engineers learn new codebases
Strategies to quickly get up to speed, whether you're a seasoned engineer or a newcomer to the field. The post How GitHub engineers learn new codebases appeared first on The GitHub Blog.
2025-03-13 16:00
local_offer
Sign in as anyone: Bypassing SAML SSO authentication with parser differentials
Critical authentication bypass vulnerabilities (CVE-2025-25291 + CVE-2025-25292) were discovered in ruby-saml up to version 1.17.0. In this blog post, we'll shed light on how these vulnerabilities that rely on a parser differential were uncovered. The ...
2025-03-12 21:07
local_offer
GitHub Availability Report: February 2025
In February, we experienced two incidents that resulted in degraded performance across GitHub services. The post GitHub Availability Report: February 2025 appeared first on The GitHub Blog.
2025-03-12 19:59
local_offer
Why Java endures: The foundation of modern enterprise development
For 30 years, Java has been a cornerstone of enterprise software development. Here’s why—and how to learn Java. The post Why Java endures: The foundation of modern enterprise development appeared first on The GitHub Blog.
2025-03-11 16:00
local_offer