Git security vulnerabilities announced | The GitHub Blog
Open SourceSecurityGit security vulnerabilities announcedGit users are encouraged to upgrade to the latest version, especially if they use `git archive`, work in untrusted repositories, or use Git GUI on Windows. Today, the Git project released new versions to address a pair of security vulnerabilities, CVE-2022-41903, and CVE-2022-23521, that affect versions 2.39 and older. Git for Windows was al
Scripting with GitHub CLI
ProductScripting with GitHub CLIIt has been a year since we’ve launched the first public release of GitHub CLI. Since, we have added functionality to manage your repositories, comment on issues, enable auto-merge for… It has been a year since we’ve launched the first public release of GitHub CLI. Since, we have added functionality to manage your repositories, comment on issues, enable auto-merge f
GitHub Actions now supports CI/CD, free for public repositories
CompanyProductGitHub Actions now supports CI/CD, free for public repositoriesSince we introduced GitHub Actions last year, the response has been phenomenal, and developers have created thousands of inspired workflows. But we’ve also heard clear feedback from almost everyone: you want CI/CD! And that’s what we’re announcing today. GitHub Actions is an API for cause and effect on GitHub: orchestrate
Introducing draft pull requests
ProductIntroducing draft pull requestsYou can now use draft pull requests to clearly tag when you’re coding a work in progress. At GitHub, we’ve always felt that you should be able to open a pull request to start a conversation with your collaborators as soon as your brilliant idea or code is ready to take shape. Even if you end up closing the pull request for something else, or refactoring the co
Using QL to find a remote code execution vulnerability in Apache Struts (CVE-2017-9805) — Blog - lgtm
CompanyThe next step for LGTM.com: GitHub code scanning!Today, GitHub code scanning has all of LGTM.com’s key features—and more! The time has therefore come to announce the plan for the gradual deprecation of LGTM.com. Three years ago, the team that built LGTM.com joined GitHub. From that moment on, we have worked tirelessly to natively integrate its underlying CodeQL analysis technology into GitH
GitHub Actions: built by you, run by us | The GitHub Blog
CommunityProductGitHub Actions: built by you, run by usWe heard directly from developers working with GitHub Apps, and we’re excited to share their work with you. Yesterday at GitHub Universe, we announced GitHub Actions, a new way to automate and customize your workflows. Configuring the apps and services that make up your development cycle takes significant time and effort. GitHub Actions applie
Upgrading GitHub from Rails 3.2 to 5.2 | GitHub Engineering
EngineeringUpgrading GitHub from Rails 3.2 to 5.2On August 15th GitHub celebrated a major milestone: our main application is now running on the latest version of Rails: 5.2.1! 🎉 In total the project took a year and… On August 15th GitHub celebrated a major milestone: our main application is now running on the latest version of Rails: 5.2.1! 🎉 In total the project took a year and a half to upgrad
Removing jQuery from GitHub.com frontend
EngineeringRemoving jQuery from GitHub.com frontendWe have recently completed a milestone where we were able to drop jQuery as a dependency of the frontend code for GitHub.com. This marks the end of a gradual, years-long… We have recently completed a milestone where we were able to drop jQuery as a dependency of the frontend code for GitHub.com. This marks the end of a gradual, years-long transiti
Using Figma designs to build the Octicons icon library
EngineeringUsing Figma designs to build the Octicons icon libraryHow we use Figma files to keep the Octicons icon library up to date Recently our friends at Figma announced their new Figma platform, and we’ve been really excited about its potential. We’ve immediately put the platform to use with Octicons, our SVG icon library. Distributing design assets effectively Previously, we checked our asset
Introducing security alerts on GitHub
ProductSecurityIntroducing security alerts on GitHubLast month, we made it easier for you to keep track of the projects your code depends on with the dependency graph, currently supported in Javascript and Ruby. Today, for… Last month, we made it easier for you to keep track of the projects your code depends on with the dependency graph, currently supported in Javascript and Ruby. Today, for the o
Resolve simple merge conflicts on GitHub
ProductResolve simple merge conflicts on GitHubYou can now resolve simple merge conflicts on GitHub right from your pull requests, saving you a trip to the command line and helping your team merge pull requests faster.… You can now resolve simple merge conflicts on GitHub right from your pull requests, saving you a trip to the command line and helping your team merge pull requests faster. The new
Publishing with GitHub Pages, now as easy as 1, 2, 3
ProductPublishing with GitHub Pages, now as easy as 1, 2, 3Publishing a website or software documentation with GitHub Pages now requires far fewer steps — three to be exact: Create a repository (or navigate to an existing repository) Commit a Markdown… Publishing a website or software documentation with GitHub Pages now requires far fewer steps — three to be exact: Create a repository (or navigate
Simpler GitHub Pages publishing
ProductSimpler GitHub Pages publishingWe're making it easier to publish a website with GitHub Pages. Now you can select a source in your repository settings and GitHub Pages will look for your content there.… We’re making it easier to publish a website with GitHub Pages. Now you can select a source in your repository settings and GitHub Pages will look for your content there. Selecting master bran
Change the base branch of a Pull Request
ProductChange the base branch of a Pull RequestYou can now change the base branch of an open pull request. After you’ve created a pull request, you can modify the base branch so that the changes in the… You can now change the base branch of an open pull request. After you’ve created a pull request, you can modify the base branch so that the changes in the pull request are compared against a differ
gh-ost: GitHub's online schema migration tool for MySQL
Engineeringgh-ost: GitHub’s online schema migration tool for MySQLToday we are announcing the open source release of gh-ost: GitHub's triggerless online schema migration tool for MySQL. gh-ost has been developed at GitHub in recent months to answer a… Today we are announcing the open source release of gh-ost: GitHub’s triggerless online schema migration tool for MySQL. gh-ost has been developed at
Reorder issues within a milestone
ProductReorder issues within a milestoneMilestones and labels are a handy way to group and organize your issues, but sometimes it’s helpful to indicate which ones you or your team want to focus on first.… Milestones and labels are a handy way to group and organize your issues, but sometimes it’s helpful to indicate which ones you or your team want to focus on first. You can now reorder issues and
HTTPS for GitHub Pages
ProductHTTPS for GitHub PagesMillions of people rely on GitHub Pages to host their websites and millions more visit these websites every day. To better protect traffic to GitHub Pages sites, as well as… Millions of people rely on GitHub Pages to host their websites and millions more visit these websites every day. To better protect traffic to GitHub Pages sites, as well as to encourage the broader
Introducing unlimited private repositories
ProductIntroducing unlimited private repositoriesWe couldn’t be more excited to announce that all of our paid plans on GitHub.com now include unlimited private repositories. GitHub will always be free for public and open source… We couldn’t be more excited to announce that all of our paid plans on GitHub.com now include unlimited private repositories. GitHub will always be free for public and open
GPG signature verification
ProductGPG signature verificationWhen you're building software with people from around the world, sometimes it's important to validate that commits and tags are coming from an identified source. Git supports signing commits and… When you’re building software with people from around the world, sometimes it’s important to validate that commits and tags are coming from an identified source. Git suppo
リリース、障害情報などのサービスのお知らせ
最新の人気エントリーの配信
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く
Create a 13 kB JavaScript game in 30 days with js13kGames