Tag

github

Oldest Newest URL A-Z URL Z-A Title A-Z Title Z-A Random
A GitHub Issue Title Compromised 4k Developer Machines
https://grith.ai/blog/clinejection-when-your-ai-tool-installs-another

A prompt injection in a GitHub issue triggered a chain reaction that ended with 4,000 developers getting OpenClaw installed without consent. The attack composes well-understood vulnerabilities into something new: one AI tool bootstrapping another.

 
cyber github hackernews security vulnerability
Added 2 weeks ago
Turn Dependabot Off
https://words.filippo.io/dependabot/

I recommend turning Dependabot off and replacing it with a pair of scheduled GitHub Actions, one running govulncheck, and the other running CI against the latest version of your dependencies.

 
dependencies github hackernews security
Added 1 month ago
The Missing GitHub Status Page
https://mrshu.github.io/github-statuses/
 
github incident incident management outage
Added 1 month ago
Ex-GitHub CEO launches a new developer platform for AI agents
https://entire.io/blog/hello-entire-world/

Announcing Entire with $60 million seed round and shipping our first product, called Checkpoints.

 
ai development github hackernews llm platform
Added 1 month ago
Kusari
https://us.kusari.cloud/signup
 
actions github open source security
Added 1 month ago
Pricing Changes for GitHub Actions
https://resources.github.com/actions/2026-pricing-changes-for-github-actions/
 
actions github hackernews
Added 3 months ago
GitHub: Git operation failures
https://www.githubstatus.com/incidents/5q7nmlxz30sk

GitHub's Status Page - Git operation failures.

 
github hackernews incident outage
Added 4 months ago
Accelerate developer productivity with these 9 open source AI and MCP projects - The GitHub Blog
https://github.blog/open-source/accelerate-developer-productivity-with-these-9-open-source-ai-and-mcp-projects/

These nine open source MCP projects provide new frameworks, tools, and assistants to unlock AI-native workflows, agentic tooling, and innovation.

 
ai github llm mcp servers open source
Added 5 months ago
Auf Wiedersehen, GitHub ♥️ - The GitHub Blog
https://github.blog/news-insights/company-news/goodbye-github/

I am stepping down as GitHub CEO to build my next adventure. GitHub is thriving and has a bright future ahead.

 
github microsoft technology
Added 7 months ago
GitHub just got less independent at Microsoft after CEO resignation | The Verge
https://www.theverge.com/news/757461/microsoft-github-thomas-dohmke-resignation-coreai-team-transition

Microsoft is bringing GitHub into its AI engineering team. It’s part of an AI shakeup, following the GitHub CEO resigning.

 
github microsoft technology
Added 7 months ago
Gemini CLI GitHub Actions: AI coding made for collaboration
https://blog.google/technology/developers/introducing-gemini-cli-github-actions/

Today, we’re introducing Gemini CLI GitHub Actions. It’s a no-cost, powerful AI coding teammate for your repository. It acts both as an autonomous agent for critical routine coding tasks, and an on-demand collaborator you can quickly delegate work to.

 
actions ai github google llm
Added 7 months ago
A practical guide on how to use the GitHub MCP server - The GitHub Blog
https://github.blog/ai-and-ml/generative-ai/a-practical-guide-on-how-to-use-the-github-mcp-server/

Upgrade from a local MCP Docker image to GitHub’s hosted server and automate pull requests, continuous integration, and security triage in minutes.

 
ai ai agents github llm
Added 7 months ago
Agent mode 101: All about GitHub Copilot’s powerful mode - The GitHub Blog
https://github.blog/ai-and-ml/github-copilot/agent-mode-101-all-about-github-copilots-powerful-mode/

A full look at agent mode in GitHub Copilot, including what it can do, when to use it, and best practices.

 
ai ai agents coding assistant github
Added 9 months ago
Less TODO, more done: The difference between coding agent and agent mode in GitHub Copilot - The GitHub Blog
https://github.blog/developer-skills/github/less-todo-more-done-the-difference-between-coding-agent-and-agent-mode-in-github-copilot/

We’ll decode these two tools—and show you how to use them both to work more efficiently.

 
ai coding assistant github llm
Added 9 months ago
Using artifact attestations to establish provenance for builds - GitHub Docs
https://docs.github.com/en/actions/security-for-github-actions/using-artifact-attestations/using-artifact-attestations-to-establish-provenance-for-builds#verifying-artifact-attestations-with-the-github-cli
 
github security supply chain
Added 9 months ago
Hardening GitHub Actions: Lessons from Recent Attacks | Wiz Blog
https://www.wiz.io/blog/github-actions-security-guide
 
actions github import-20250527224135 security
Added 9 months ago
actions/actions-runner-controller
https://github.com/actions/actions-runner-controller

Kubernetes controller for GitHub Actions self-hosted runners - actions/actions-runner-controller

 
actions github import-20250527224135
Added 9 months ago
Any program can be a GitHub Actions shell
https://yossarian.net/til/post/any-program-can-be-a-github-actions-shell/
 
actions github import-20250527224135
Added 9 months ago
CodeQLEAKED – Public Secrets Exposure Leads to Supply Chain Attack on GitHub CodeQL
https://www.praetorian.com/blog/codeqleaked-public-secrets-exposure-leads-to-supply-chain-attack-on-github-codeql/

An exposed GitHub token could have been used to launch a supply chain attack on GitHub CodeQL, resulting in source code exposure and repository tampering of CodeQL users.

 
cyber github import-20250527224135 secrets security
Added 9 months ago
IssueOps: Automate CI/CD (and more!) with GitHub Issues and Actions - The GitHub Blog
https://github.blog/engineering/issueops-automate-ci-cd-and-more-with-github-issues-and-actions/

A look into building IssueOps workflows on GitHub to do everything from CI/CD to handling approvals and more.

 
actions github import-20250527224135 operations
Added 9 months ago
reviewdog/action-setup
https://www.wiz.io/blog/new-github-action-supply-chain-attack-reviewdog-action-setup
 
actions github import-20250527224135 security supply chain
Added 9 months ago
Harden-Runner detection: tj-actions/changed-files action is compromised - StepSecurity
https://search.app/nz29ggeNi26oEF8q9
 
actions github import-20250527224135 open source security vulnerability
Added 9 months ago
Recent improvements to Artifact Attestations - GitHub Changelog
https://github.blog/changelog/2025-02-18-recent-improvements-to-artifact-attestations/

We released a collection of improvements to Artifact Attestations to make the verification of attestations easier and more consistent. Artifact Attestations let you create provenance signatures, which provide an unforgeable…

 
github import-20250527224135 security supply chain
Added 9 months ago
Repositories – Enterprise rules and custom properties updates - GitHub Changelog
https://github.blog/changelog/2025-02-18-repositories-enterprise-rules-and-custom-properties-updates/

Enterprise rules and custom properties are getting updates as part of the current public preview, as well introducing a new search and filter experience for custom properties. Custom properties There…

 
github import-20250527224135
Added 9 months ago