Tag github

Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded - github/audit-actions-workflow-runs

After years of hard work, I can finally announce that I am now a Hubber!

🔒 Command line tool and Go library for CODEOWNERS files - hmarr/codeowners

You can access data from deleted forks, deleted repositories and even private repositories on GitHub. And it is available forever. This is known by GitHub, and intentionally designed that way.

A GoLang HTTP RoundTripper that handles GitHub API secondary rate limits - gofri/go-github-ratelimit

HTTP Round Tripper for GitHub Apps - Authenticate as an Installation Workflow - bradleyfalzon/ghinstallation

Pushing code to GitHub is one of the most fundamental interactions that developers have with GitHub every day. Read how we have significantly improved the ability of our monolith to correctly and fully process pushes from our users.

Don't let the unexpected derail your projects. Read our guide on embracing uncertainty in software development and unlock new possibilities. Everything you need to know about securing the software supply chain.

Everything you need to know about securing the software supply chain.

Discover how keeping repository maintainer information accurate through CODEOWNERS files and automating maintenance with tools like cleanowners fosters efficient collaboration and sustainable software projects.

When contributing to other users’ repositories, always start a new branch in your fork.

Ha, did not realize that with Microsoft's acqi of GitHub, they pushed it into so many government and enterprise spaces a lot more quickly. Probably why the leadership team there caved to Microsoft, it was more money.

The new #github based on #react is an abject failure to improve the user experience. On every count it is objectively worse than previous iterations. Page load time is poor, interactivity is gated seemingly on very large JS loads. Initial page layout is broken on mobile and randomly resizes the width of the viewport after loading. The number of micro-annoyances seem to be adding up daily. This is like an object lesson in what not to do to your successful webapp.

Hackers are breaching GitHub accounts and inserting malicious code disguised as Dependabot contributions to steal authentication secrets and passwords from developers.

Researchers from Purdue and NCSU have found a large number of command injection vulnerabilities in the workflows of projects on GitHub. Follow these four tips to keep your GitHub Actions workflows secure.

GitHub switched to performing merges and rebases using merge-ort. Come behind the scenes to see why and how we made this change.

GitHub recently experienced several availability incidents, both long running and shorter duration. We have since mitigated these incidents and all systems are now operating normally. Read on for more details about what caused these incidents and what we’re doing to mitigate in the future.

A few thoughts on GitHub&rsquo;s practice of keeping their code synchronized with Rails <code>main</code>.

Since the beginning, GitHub.com has been a Ruby on Rails monolith. Today, the application is nearly two million lines of code and more than 1,000 engineers collaborate on it daily. We deploy as often as 20 times a day, and nearly every week one of those deploys is a Rails upgrade. Upgrading Rails weekly Every […]

Many of us are aware of the benefits that a strong focus on automation can bring, particularly in our development workflow and DevOps lifecycle. But silos across businesses can lead to duplication of effort, and potential to lose out on best practices. In this post, we’ll explore how CI/CD can be shared across your entire organization alongside policies, for a well-governed experience with GitHub Actions.

I've been using GitHub since I was eleven years old. To be fair, I didn't really understand git at the time, but I was able to fumble my way through it...