Audit log streaming is now in public beta

If you work in an enterprise environment, audit and compliance considerations often factor heavily into system design. Starting today, if you’re a GitHub Enterprise Cloud customer, you can set up a stream of audit log and Git events to Splunk or an Azure Event Hub. The stream forwards every one of these events in near real time, and retains data for...

21h

The ReadME Project: A look back at the community stories that shape us

Open source software is only as strong as it is today because of the millions of developers from around the world who are making it better everyday. The collaboration it promotes has allowed us to truly test the limits of what’s possible with technology. With a community of 65M+ developers, it’s impossible to keep up with all the groundbreaking work...

2d

What’s new from GitHub Changelog? August 2021 Recap

What was big in August? Innovating today is much more than just writing code. The tools we use also play a significant role in doing our best work, and it’s GitHub’s mission to provide that experience, which is why we’re excited about GitHub Codespaces, now generally available. GitHub Codespaces allows you to spin a dev environment that suits your...

3d

Announcing recipients of the GitHub Open Source Grants and GitHub Sponsors now open in India

At GitHub Satellite India 2021, we announced GitHub Open Source Grants, committing one crore (10 million) Indian rupees to support and fund open source maintainers and contributors, as they continue to build open source software and make an impact for India and the world. GitHub Open Source Grants recipients Since May 2021, we’ve received hundreds...

4d

GitHub Enterprise Server 3.2 brings new color modes and added security capabilities

GitHub Enterprise Server 3.2 is available today as a release candidate. With this release, we’re shipping over 70 new features and changes to improve the developer experience and deliver new security capabilities for our customers. You can find all the changes in the release notes, but here are a few of the key themes in this release. Remember, release...

1w

An analysis on developer-security researcher interactions in the vulnerability disclosure process

This blog post is a special report providing insights into developers’ interactions with security researchers through the vulnerability disclosure process and their views and perspectives on the security research community. The analysis is brought to you from the GitHub Security Lab. In December 2020, we announced that we were expanding our research...

1w

GitHub security update: Vulnerabilities in tar and @npmcli/arborist

Between July 21, 2021 and August 13, 2021 we received reports through one of our private security bug bounty programs from researchers regarding vulnerabilities in the Node.js packages tar and @npmcli/arborist. We started our own security review of tar and @npmcli/arborist during the triage of these issues, which in turn uncovered additional vulnerabilities....

2w

Increasing developer happiness with GitHub code scanning

You probably already know about using GitHub code scanning to secure your code. But how about using it to make your day-to-day coding easier? We’ve been making internal use of CodeQL, our code analysis engine for code scanning, to keep code quality high by protecting ourselves from those annoying coding mistakes that are easy to make but hard to spot!...

2w

Release Radar · August 2021 Edition

The end of financial year is complete, tax time is over, and everyone is back to shipping awesome projects. During August, our community has been super busy shipping lots of new updates. These new releases include everything from world-changing tech to weekend hobbies. Here are some of our top staff picks of  amazing open source projects that shipped...

2w

Introducing the MLH Fellowship: GitHub Externship Track

Applications are now open for the MLH Fellowship: GitHub Externship Track! Building on our work with the Major League Hacking team, the new fellowship track will offer students the opportunity to support and maintain the codebases that run GitHub itself with the real-world projects, training, and community mentorship. Students in the MLH community...

2w