Post details
Discover how keeping repository maintainer information accurate through CODEOWNERS files and automating maintenance with tools like cleanowners fosters efficient collaboration and sustainable software projects.
Discover how keeping repository maintainer information accurate through CODEOWNERS files and automating maintenance with tools like cleanowners fosters efficient collaboration and sustainable software projects.
github tip: you can use "redirect.github.com" when referencing an issue/PR from another repo inside an issue/PR in your repo this will avoid your issue getting backlinked into the other repo's issue, reducing noise. example: "github.com/nodejs/node/6969" becomes: "redirect.github.com/nodejs/node/6969"
Using renovate-to-sbom
with the GitHub Dependency Submission API (4 mins read).
How to improve the data in GitHub's Dependency Graph by using an SBOM produced by Renovate data.
Comparing the different Merge Request / Pull Request merge methods in GitLab and GitHub (2 mins read).
How the different merge methods for contributions work between GitLab and GitHub.
When contributing to other users’ repositories, always start a new branch in your fork.
Ha, did not realize that with Microsoft's acqi of GitHub, they pushed it into so many government and enterprise spaces a lot more quickly. Probably why the leadership team there caved to Microsoft, it was more money.
The new #github based on #react is an abject failure to improve the user experience. On every count it is objectively worse than previous iterations. Page load time is poor, interactivity is gated seemingly on very large JS loads. Initial page layout is broken on mobile and randomly resizes the width of the viewport after loading. The number of micro-annoyances seem to be adding up daily. This is like an object lesson in what not to do to your successful webapp.
Hackers are breaching GitHub accounts and inserting malicious code disguised as Dependabot contributions to steal authentication secrets and passwords from developers.
dependency-management-data now supports Software Bill of Materials (SBOMs) and has better Dependabot support (2 mins read).
Announcing improved support for Dependabot and support for Software Bill of Materials (SBOMs).
Prefer using the GitHub Software Bill of Materials (SBOMs) API over the Dependency Graph GraphQL API (2 mins read).
Why you should use GitHub's Software Bill of Materials API instead of the Dependency Graph GraphQL API.
Setting up real-time Slack notifications for GitHub (1 mins read).
How to get Slack's real-time notifications integrated with GitHub.
Researchers from Purdue and NCSU have found a large number of command injection vulnerabilities in the workflows of projects on GitHub. Follow these four tips to keep your GitHub Actions workflows secure.
GitHub switched to performing merges and rebases using merge-ort. Come behind the scenes to see why and how we made this change.
Merging a branch in GitHub - the hard way (4 mins read).
How to (kinda) merge two branches in GitHub using the underlying Git database API.
GitHub recently experienced several availability incidents, both long running and shorter duration. We have since mitigated these incidents and all systems are now operating normally. Read on for more details about what caused these incidents and what we’re doing to mitigate in the future.
Getting the commit author details for a GitHub App account (1 mins read).
How to retrieve the git commit author details for a given GitHub App.
A few thoughts on GitHub’s practice of keeping their code synchronized with Rails <code>main</code>.
Since the beginning, GitHub.com has been a Ruby on Rails monolith. Today, the application is nearly two million lines of code and more than 1,000 engineers collaborate on it daily. We deploy as often as 20 times a day, and nearly every week one of those deploys is a Rails upgrade. Upgrading Rails weekly Every […]
Many of us are aware of the benefits that a strong focus on automation can bring, particularly in our development workflow and DevOps lifecycle. But silos across businesses can lead to duplication of effort, and potential to lose out on best practices. In this post, we’ll explore how CI/CD can be shared across your entire organization alongside policies, for a well-governed experience with GitHub Actions.
I've been using GitHub since I was eleven years old. To be fair, I didn't really understand git at the time, but I was able to fumble my way through it...
This is cool, I've been considering what the process is for setting one of these up recently
We are open sourcing our own OSPO policies, tools, and guides to help other OSPOs get started. See how you can get started. github.blog/2023-03-13-an-…GitHub (@github)Fri, 31 Mar 2023 12:07 +0000
Ensuring files are synced between repos with GitHub Actions (2 mins read).
Creating a GitHub Action workflow to indicate when vendored files are out-of-sync between GitHub repos.
Getting a GitHub App installation token on the command-line (1 mins read).
How to get a GitHub App installation token (using Typescript) for a given installation.
Listing the status of your branch protection in GitHub (1 mins read).
Creating a command-line Go tool to list the branch protection status of your repositories.
Performing bulk changes across Git(Hub) Repos with Turbolift and Microplane (4 mins read).
Using Turbolift and Microplane to enact changes across many Git(Hub) repositories.
GitHub Actions has supported using OIDC tokens for about 15 months now. It is a much better of providing AWS credentials to workflows than creating IAM users and storing long-lived access keys in GitHub Actions secrets.
Enabling/Disabling GitHub Issues via the GitHub API (1 mins read).
How to use the GitHub API to update whether Issues are enabled on a given repo or not.
Attached: 1 image https://github-contributions.vercel.app/ Is really neat - renders a single image with your entire GitHub contribution history, mine goes all the way back to 2008!
The GitHub CODEOWNERS file validator. Contribute to mszostok/codeowners-validator development by creating an account on GitHub.
this new github font is ace(https://bell.bz/@andy/109506410817881263)
Prefilling OAuth2 scopes for GitHub Personal Access Tokens (1 mins read).
How to make it easier to set up your OAuth2 scopes on a Personal Access Token with GitHub.
We’re introducing calendar-based versioning for our REST API, so we can keep evolving our API, whilst still giving integrators a smooth migration path and plenty of time to update their integrations.
See what we're building to enhance the most integrated developer platform that allows developers and enterprises to drive innovation with ease.
Listing all GitHub repositories in a GitHub Organisation (2 mins read).
How to use the GraphQL API to list all the repositories that can be found in a given GitHub organisation.
:bird: A GitHub action to tweet from a repository. Contribute to twitter-together/action development by creating an account on GitHub.
The other day someone claimed a hostname on a domain I own and it took me a while to track down how. After a lot of digging around, trying to figure out how the hijack was accomplished, it turns out it was via GitHub Pages.
I don't want it to exist at all lmao, it's an ethical clusterfuck
Senior Oops Engineer (@ReinH)Wed, 03 Aug 2022 20:18 +0000
buried in github's settings (Settings -> Code Pilot) is this opt-out that y'all should probably click
Senior Oops Engineer (@ReinH)Wed, 03 Aug 2022 03:07 +0000
and there it is. github takes all our free code, puts it in a blender, uses us for free QA on the result, and finally turns around and charges for it
Post details
Looks like GitHub Copilot is going public as a paid product! I have to admit that their "first hit is free" strategy worked perfectly, writing code without it is now somewhat painful and I'll happily pay for it
Brendan Dolan-Gavitt (@moyix)Tue, 21 Jun 2022 18:50 +0000
eevee (@eevee)Tue, 21 Jun 2022 19:50 +0000
If you need to verify the ID of the OAuth application, check the number at the end of the url like github.com/orgs/<org>/policies/applications/145909 coming from the github.com/organizations/<org>/settings/oauth_application_policy page.
chrismo (@the_chrismo)Sat, 16 Apr 2022 02:42 +0000
Watched Free Guy the other day and saw an Octocat sticker! Someone on the set design team should get a promotion. Awesome movie and attention to detail, @VancityReynolds! 😻Mark Otto (@mdo)Wed, 13 Apr 2022 18:08 +0000
You're currently viewing page 1 of 4, of 168 posts.