Clik here to view.
How GitHub reduced testing time for iOS apps with new runner features
GitHub Actions GitHub for iOS The GitHub iOS and GitHub Actions macOS runner teams are integral parts of each other’s development inner loop. Each team partners on testing new runner images and...
View ArticleClik here to view.
Top 12 Git commands every developer must know
Welcome to GitHub for Beginners, our series to help newcomers like you learn the basics of everything from repositories to pull requests and more. (Don’t know what those are yet? That’s okay, it’s why...
View ArticleClik here to view.
10 years of the GitHub Security Bug Bounty Program
Each year, we celebrate the GitHub Security Bug Bounty program, highlighting impressive bugs and researchers, rewards, live hacking events, and more. This year, we celebrate a new milestone: 10 years...
View ArticleClik here to view.
How we improved push processing on GitHub
What happens when you push to GitHub? The answer, “My repository gets my changes” or maybe, “The refs on my remote get updated” is pretty much right—and that is a really important thing that happens,...
View ArticleClik here to view.
Leveraging technology on the frontlines of emergency: How communities of...
Coming from the humanitarian sector, I’ve seen firsthand how organizations are leveraging tech in innovative ways to solve global problems. At GitHub, the more I learn from these organizations, the...
View ArticleGitHub Availability Report: May 2024
In May, we experienced one incident that resulted in significant degraded performance across GitHub services. May 21 11:40 UTC (lasting 7 hours 26 minutes) On May 21, various GitHub services...
View ArticleUnlocking the power of unstructured data with RAG
Whether they’re building a new product or improving a process or feature, developers and IT leaders need data and insights to make informed decisions. When it comes to software development, this data...
View ArticleGitHub Enterprise Server 3.13 is now generally available
GitHub Enterprise Server 3.13 is now generally available. It includes many new features for developers, enterprise admins, and operators. All of this is to help your organization build better, more...
View ArticleClik here to view.
Execute commands by sending JSON? Learn how unsafe deserialization...
Can an attacker execute arbitrary commands on a remote server just by sending JSON? Yes, if the running code contains unsafe deserialization vulnerabilities. But how is that possible? In this blog...
View ArticleClik here to view.
Beginner’s guide to GitHub repositories: How to create your first repo
Welcome back to GitHub for Beginners, a series designed to help you navigate GitHub with ease. Our last post covered the top Git commands every developer should know. Today, we’re diving right into...
View ArticleClik here to view.
Attack of the clones: Getting RCE in Chrome’s renderer with duplicate object...
In this post, I’ll exploit CVE-2024-3833, an object corruption bug in v8, the Javascript engine of Chrome, that I reported in March 2024 as bug 331383939. A similar bug, 331358160, was also reported...
View ArticleClik here to view.
Beginner’s guide to GitHub: Uploading files and folders to GitHub
Welcome back to GitHub for Beginners, a series designed to help you navigate GitHub with ease. If you’ve been following along, we’ve covered some basics of Git and GitHub, including the top Git...
View ArticleClik here to view.
Exploring the challenges in creating an accessible sortable list (drag-and-drop)
Drag-and-drop is a highly interactive and visual interface. We often use drag-and-drop to perform tasks like uploading files, reordering browser bookmarks, or even moving a card in solitaire. It can be...
View ArticleClik here to view.
Advancing responsible practices for open source AI
Today, the Partnership on AI (PAI) published a report, Risk Mitigation Strategies for the Open Foundation Model Value Chain. The report provides guidance for actors building, hosting, adapting, and...
View ArticleGitHub Availability Report: June 2024
In June, we experienced two incidents that resulted in degraded performance across GitHub services. June 05 17:05 UTC (lasting 142 minutes) On June 5, between 17:05 UTC and 19:27 UTC, the GitHub Issues...
View ArticleClik here to view.
How researchers are using GitHub Innovation Graph data to estimate the impact...
We launched the GitHub Innovation Graph to make it easier for researchers, policymakers, and developers to access longitudinal metrics on software development for economies around the world. We’re...
View ArticleClik here to view.
3 ways to get Remote Code Execution in Kafka UI
Kafka UI is a popular open source web application designed to manage and monitor Apache Kafka clusters. It is used mainly by developers and administrators to provide visual representation of the...
View ArticleHow to review code effectively: A GitHub staff engineer’s philosophy
As a staff engineer at GitHub, code review is one of my main focus areas in my day to day work. Over the past eight years, I’ve reviewed more than 7,000 pull requests. Why so many? Because code review...
View ArticleHow we improved availability through iterative simplification
Solving and staying ahead of problems when scaling up a system of GitHub’s size is a delicate process. The stack is complex, and even small changes can have a big ripple effect. Here’s a look at some...
View ArticleGitHub Accelerator Showcase: Celebrating our second cohort and what’s next
Today, we are excited to reveal the amazing maintainer stories of the 11 open source AI projects selected for the second cohort of the GitHub Accelerator Showcase. Congratulations to all 11 projects...
View Article