SD Times

GitHub unbundling its GitHub Advanced Security offering starting in April

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...
Bleeping Computer

GitHub expands security tools after 39 million secrets leaked in 2024

GitHub announced updates to its Advanced Security platform after it detected over 39 million leaked secrets in repositories during 2024, including API keys and credentials, exposing users and ...
SD Times

GitHub introduces security campaigns to help developers reduce security debt

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...
How-To Geek on MSN

The hidden dangers of downloading GitHub projects: How to stay safe

Downloading apps from GitHub isn’t inherently dangerous, but doing so blindly is. Treat every repository as untrusted until ...

Critical AWS supply chain vulnerability could have let hackers take over key GitHub repositories

A critical misconfiguration in Amazon Web Services (AWS) CodeBuild service exposed several AWS-managed GitHub repositories to ...
Dark Reading

GitHub Opens Security Database to Community Contributions

Software platform provider GitHub has now published its GitHub Advisory Database under an open-source license, giving contributors the ability to add technical information to the collected security ...
VentureBeat

GitHub opens its vulnerabilities Advisory Database to community submissions

Join our daily and weekly newsletters for the latest updates and exclusive content on industry-leading AI coverage. Learn More GitHub is opening the GitHub Advisory Database to community submissions, ...
Security

GitHub Advanced Security integrates Endor Labs for end-to-end application security

Endor Labs today announced a critical partnership with GitHub, the platform for software developers to create and share code. In an environment where the number of Common Vulnerabilities and Exposures ...
Threat Post

GitHub Prepares to Move Beyond Passwords

GitHub adds support for FIDO2 security keys for Git over SSH to fend off account hijacking and further its plan to stick a fork in the security bane of passwords. GitHub, the ubiquitous host for ...
TechCrunch

JFrog deepens its partnership with GitHub, launches runtime security service

Earlier this year, software supply chain platform (and binary specialist) JFrog announced a partnership with GitHub that, among other things, allowed developers and the teams that support them to ...
Bleeping Computer

GitHub now supports security keys when using Git over SSH

GitHub has added support for securing SSH Git operations using FIDO2 security keys for added protection from account takeover attempts. Researchers at North Carolina State University (NCSU) found [PDF ...
TechRepublic

How GitHub Is Securing the Software Supply Chain

A surge in supply chain attacks has put open-source software risk, prompting GitHub to strengthen security across its npm ecosystem. The company, which operates the world’s largest code repository, is ...