Github

Lightning Q&A: DevSecOps in five with Maya Kaczorowski

In this interview, we dig deeper with Maya Kaczorowski on what DevSecOps is, and how to apply it. It’s a mindset shift in how development teams think about security. DevSecOps is about making all parties who are part of the application development lifecycle accountable for security of the application.
Github

GitHub Mobile and GraphQL

GitHub’s mobile applications have used GraphQL to power new features. We’ve now been able to move faster and get more done with less hassle and no over-fetching. We were able to turn to the open
Github

Join us for OctogatosConf

A free two-day single track conference live on September 24 - 25, 2020 in celebration of our culture and LatinX heritage month. You will join a live stream of interactive talks by industry experts in both Spanish, Portuguese and English, with live captioning and translation. Topics will include software development, security, technical project management, civic tech, open source, professional development and best practices.
Github

GitHub CLI 1.0 is now available

GitHub CLI brings GitHub to your terminal. It reduces context switching, helps you focus, and enables you to more easily script and create your own workflows. Earlier this year, we announced the beta of GitHub
Github

Release Radar · September 2020 Edition

It’s back! We’re here to bring you the latest and greatest releases for September 2020. These are exciting new releases from some of the coolest projects around. There’s everything from world-changing tech, to weekend hobbies.
Github

GitHub Africa Virtual Meetup

The developer community in Africa continues to thrive. Here at GitHub, we’re excited to announce our first Virtual Meetup for African developers. This meetup is happening on Tuesday, September 15th, from 3pm to 5pm WAT
Github

How we threat model

At GitHub, we spend a lot of time thinking about and building secure products—and one key facet of that is threat modeling. This practice involves bringing security and engineering teams together to discuss systems, ultimately
Github

Secure at every step: What is software supply chain security and why does it matter?

A software supply chain is anything that goes into, or affects your code. Even though supply chain compromises are real, and growing in popularity, they’re still extremely rare - and so the most important thing you can do to protect your supply chain is patch your vulnerabilities. Then, to successfully secure your software supply chain, you need to understand the dependencies in your environment, know about vulnerabilities in those dependencies, and quickly patch them. For Software Composition Analysis (SCA) capabilities native to GitHub, use Dependency Graph, Dependabot alerts, and Dependabot security and version updates to automate the hard work.
Github

GitHub Availability Report: August 2020

Introduction In August, we experienced no incidents resulting in service downtime. This month’s GitHub Availability Report will dive into updates to the GitHub Status Page and provide follow-up details on how we’ve addressed the incident
Github

GitHub Action Hero: Eddie Jaoude

GitHub Actions gives you the power to automate your workflow. Connect with the tools you know and love. Have more freedom to innovate and be creative. Deploy to any cloud, build containers, automate messages, and
Github

Adacats Mentorship Program: A growth journey

Last year, the Adacats (GitHub’s employee resource group for marginalized genders) started a mentorship program. We’re sharing insights and fun stories from this experience for anyone interested in starting a program of their own. The
Github

GitHub Action Hero: Keirron Stach

GitHub Actions gives you the power to automate your workflow. Connect with the tools you know and love. Have more freedom to innovate and be creative. Deploy to any cloud, build containers, automate messages, and
Github

Introducing The ReadME Project

Open source powers software on a planetary scale: 99% of code is built on it. The rewards and challenges of creating open source are deeply familiar to the maintainers and developers who create it, but
Github

Introducing the Rally + GitHub integration

GitHub’s Professional Services Engineering team has decided to open source another project: Rally + GitHub. You may have seen our most recent open source project, Super Linter. Well, the team has done it again, this time to
Github

GitHub Action Hero – Daniel Dennis

GitHub Actions gives you the power to automate your workflow. Connect with the tools you know and love. Have more freedom to innovate and be creative. Deploy to any cloud, build containers, automate messages, and
Github

GMTK Game Jam 2020 – staff picks

The fourth annual GMTK Game Jam has broken it’s previous year’s record! GMTK Game Jam is a 48-hour game-making competition focused on design, mechanics, and clever ideas. The competition has just ended, and had a record-breaking
Github

CodeGen: Semantic’s improved language support system

The Semantic Code team shipped a massive improvement to the language support system that powers code navigation. Code navigation features only scratch the surface of possibilities that start to open up when we combine Semantic‘s program analysis potential with GitHub’s scale.
Github

GitHub Action Hero: Swechhya Bista

GitHub Actions gives you the power to automate your workflow. Connect with the tools you know and love. Have more freedom to innovate and be creative. Deploy to any cloud, build containers, automate messages, and
Github

Maintainer spotlight: How to secure your project with one of the world’s top open source tools

Simon Bennetts is the OWASP Zed Attack Proxy (ZAP) Project Leader and a Distinguished Engineer at StackHawk, a company that uses ZAP to help users fix application security bugs before they hit production. Prior to making the move into security, he was a developer for 25 years and strongly believes that you can’t build secure web applications without knowing how to attack them.
Github

Highlights from Git 2.28

The open source Git project just released Git 2.28 with features and bug fixes from over 58 contributors, 13 of them new. We last caught up with you on the latest in Git back when
Github

GitHub Action Hero: Samson Amaugo

GitHub Actions allows you to automate your workflow. Connect with the tools you know and love, and have more freedom to innovate and be creative. With GitHub Actions, you can deploy to any cloud, build
Github

Hardening your GitHub Enterprise Server

GitHub stores your source code, releases, and a vast amount of invaluable information in issues and pull requests. While GitHub Enterprise Server (GHES), our self hosted solution, provides great security by default, administrators can take additional steps to further harden their appliance. This post will guide you through the most important settings.
Github

GitHub Action Hero: Nikita Sobolev

The GitHub community is capable of incredible things. GitHub Actions is just one of our newest tools made available to developers around the world. Automate your workflow, and take control of your code! Check out
Github