Git security vulnerability announced
Upgrade your local installation of Git, especially if you are using Git for Windows, or you use Git on a multi-user machine. ⌘ Read more
What’s new in GitHub Discussions: Organization Discussions, polls, and more
Today, we’re excited to bring you a few new features that will help you communicate, collaborate, and connect seamlessly with teams and communities about the software you’re building with the help of GitHub Discussions. ⌘ Read more
It’s Friday. Here’s 12 funny, nerdy pictures about computers.
Ok. 11 pictures about programming and computers… 1 picture about Ninja Turtles. Because I’m a child. ⌘ Read more
Announcing the 2022 MLH Fellowship Cohort, powered by GitHub
The MLH Fellowship, powered by GitHub, is a 12-week internship alternative for aspiring software engineers. Meet the 2022 cohort! ⌘ Read more
testing public path copy/pasted from code:
How we ship GitHub Mobile every week
Learn how the GitHub Mobile Team automates their release process with GitHub Actions. ⌘ Read more
GitHub’s top 10 blog posts of 2021
As the year winds down, we’re highlighting some of the incredible work from GitHub’s engineers, product teams, and security researchers. ⌘ Read more
How GitHub contributed to the Santa Clara Principles update
GitHub was honored to contribute to the Santa Clara Principles on Transparency and Accountability in Content Moderation 2.0. ⌘ Read more
How to leverage security frameworks and libraries for secure code
In this post, I’ll discuss how to apply OWASP Proactive Control C2: Leverage security frameworks and libraries. ⌘ Read more
The QOI File Format Specification
Last month I announced a
toy project called QOI — the Quite OK Image Format. It losslessly compresses
RGB and RGBA images to a similar size of PNG, while offering a 20x-50x
speedup in compression and 3x-4x speedup in decompression.
With the help of countless passionate people on Github, we have refined some of
the rough edges and specified exactly what … ⌘ Read more
Future of Yarn.social
What?Today I’m going to talk about Yarn.social’s future, a roadmap into where we’re going and thinking. I’ll also write a little about it’s history of where we came from and highlight how Yarn.social is different and in my opinion better.
For those of you new to my blog or Yarn.social; Yarn.social is a decentralised social media platform, a microBlogging platform. It was originally crea … ⌘ Read more
Getting started with GitHub Actions just got easier!
When you want to create a workflow in the Actions tab of your repository, the recommendations are now based on an analysis of repo content. ⌘ Read more
Technical interviews via Codespaces
Codespaces is a great tool for technical hiring exercises and helps level the playing field for candidates. ⌘ Read more
5 automations every developer should be running
Looking to avoid security vulnerabilities, buttons that don’t work, slow site speeds, or manually writing release notes? This one’s for you. ⌘ Read more
A brief history of code search at GitHub
This blog post tells the story of why we built a new search engine optimized for code. ⌘ Read more
Using GitHub’s security features to help identify Log4j exposure in your codebase
Use GitHub’s security features to assess Apache Log4j exposure and, where possible, mitigate this vulnerability within your GitHub repositories. ⌘ Read more
How to define security requirements for your OSS project
Defining your security requirements is the most important proactive control you can implement for your project. Here’s how. ⌘ Read more
GitHub’s response to Log4j vulnerability CVE-2021-44228
On Thursday, December 9, 2021, GitHub was made aware of a vulnerability in the Log4j logging framework, CVE-2021-44228. ⌘ Read more
What’s new from GitHub Changelog? November 2021 recap
We shipped a ton of updates in November, from the push notification for PR review activities on the go, to an easy way to create Markdown links. ⌘ Read more
GitHub at the UN Internet Governance Forum
Last week, GitHub joined the Internet Governance Forum to spread awareness of developers’ initiatives and public policy interests. ⌘ Read more
Introducing stack graphs
Precise code navigation is powered by stack graphs, a new open source framework that lets you define the name binding rules for a programming language. ⌘ Read more
Precise code navigation for Python, and code navigation in pull requests
Code navigation is now available in PRs, and code navigation results for Python are now more precise. ⌘ Read more
Improving GitHub code search
Today, we are rolling out a technology preview for GitHub code search, the next iteration for search, discovery, and navigation on GitHub. ⌘ Read more
GitHub Enterprise Server 3.3 is generally available
GitHub Enterprise Server is now generally available for all customers. This release improves performance for CI/CD and for customers with large repositories. ⌘ Read more
Enrolling all npm publishers in enhanced login verification and next steps for two-factor authentication enforcement
Today we’re introducing enhanced login verification to the npm registry, and we will begin a staged rollout to maintainers beginning Dec 7. ⌘ Read more
Write more secure code with the OWASP Top 10 Proactive Controls
This lesser-known OWASP project aims to help developers prevent vulnerabilities from being introduced in the first place. ⌘ Read more
Safeguard your containers with new container signing capability in GitHub Actions
GitHub has partnered with the OpenSSF and Project Sigstore to add container image signing to our default “Publish Docker Container” workflow. ⌘ Read more
On the blog: Short Fiction — All Quiet on the Vernal Front https://john.colagioia.net/blog/2021/12/05/war.html #fiction #christmas #holiday
On the blog: Free Culture Book Club — if then else, part 4 https://john.colagioia.net/blog/2021/12/04/else4.html #freeculture #bookclub
Release Radar · November 2021 Edition
The end of the year is getting closer, and our communities are busy working away on their projects. While you’ve all been busy maintaining open source projects and shipping releases, we’ve created a new open ⌘ Read more
On the blog: Tweets from 11/08 to 11/12 https://john.colagioia.net/blog/media/2021/12/03/week.html #twitter #week #socialmedia #linkdump
On the blog: Real Life in Star Trek, The Slaver Weapon, part 3 https://john.colagioia.net/blog/2021/12/02/slaver-3.html #scifi #startrek #closereading
Hey @manton Would you be open to the idea of opening up micro.Blog to Yarn.social? 🤔 I understand that micro.Blog uses micro.pub as the underlying protocol for it’s “micro blogging” right? ⌘ Read more
GitHub Availability Report: November 2021
In November, we experienced one incident resulting in significant impact and degraded state of availability for multiple services. ⌘ Read more
Using ChatOps to help Actions on-call engineers
You can multiply the impact of your domain experts by building their common workflows into ChatOps. ⌘ Read more
The Lunduke Journal Podcast - #12 - Lunduke & Friends
Listen now (59 min) | Lunduke & Hartley talk about happy nerdy things for a full hour. ⌘ Read more
Release Radar · October 2021 Edition
What an incredible month it’s been for GitHub and our communities. Whilst we’ve been busy with GitHub Universe, our communities have been busy coding. It’s been a successful year for Hacktoberfest, with many first-time contributors ⌘ Read more
On the blog: Tweets from 11/08 to 11/12 https://john.colagioia.net/blog/media/2021/11/12/week.html #twitter #week #socialmedia #linkdump
Highlights from GitHub’s security roadmap at Universe 2021
During Universe, we received a number of security questions ranging from our strategy to our advisories. Here’s what we’ve got planned! ⌘ Read more
@movq@www.uninformativ.de 12,342 twts, totalling 6.2 MB. Would deleting help, or will they come back? I guess there is one way to find out! 😄
@movq@www.uninformativ.de, how do you handle twts in Mutt? I mean, how do you organise, or manage the inmense amount that comes throught? Do you delete/trim? Move things to folders? Or simply keep that huge (12,000+ for me now) list?
Apply now for GitHub Universe 2021 micro-mentoring
As part of our ongoing commitment to ensure GitHub’s conferences are accessible and inclusive to people from all walks of life, we’re offering 30-minute, 1:1 micro-mentoring sessions with GitHub employees. ⌘ Read more
Announcing recipients of the GitHub Open Source Grants and GitHub Sponsors now open in India
Announcing recipients of the GitHub Open Source Grants and opening of GitHub Sponsors in India. ⌘ Read more
What’s new from GitHub Changelog? July 2021 Recap
A public beta for CodeQL package manager, additional options to manage Actions runs from first-time contributors, GitHub Discussions translation, and more. ⌘ Read more
On the blog: Real Life in Star Trek, Season 3 Summary https://john.colagioia.net/blog/2021/08/12/season3.html #scifi #startrek #closereading
Seamless teaching and learning through GitHub Classroom and Visual Studio Code
This GitHub Classroom extension for Visual Studio Code provides a simplified introduction to Git, GitHub Classroom, and Visual Studio Code. ⌘ Read more
On the blog: Tweets from 07/12 to 07/16 https://john.colagioia.net/blog/media/2021/07/16/week.html #twitter #week #socialmedia #linkdump
Adding support for cross-cluster associations to Rails 7 ⌘ Read more…
On the blog: Developer Journal, Bisbee Kidnapping Anniversary https://john.colagioia.net/blog/2021/07/12/bisbee.html #programming #project #devjournal