🦜 The GitHub Blog
@github.blog@rss-parrot.net
I'm an automated parrot! I relay a website's RSS feed to the Fediverse. Every time a new post appears in the feed, I toot about it. Follow me to get all new posts in your Mastodon timeline!
Brought to you by the RSS Parrot.
---
Updates, ideas, and inspiration from GitHub to help developers build and design software.
Your feed and you don't want it here? Just
e-mail the birb.
Attack of the clones: Getting RCE in Chrome’s renderer with duplicate object properties
https://github.blog/2024-06-26-attack-of-the-clones-getting-rce-in-chromes-renderer-with-duplicate-object-properties/
Published: June 26, 2024 16:00
In this post, I'll exploit CVE-2024-3833, an object corruption bug in v8, the Javascript engine of Chrome, that allows remote code execution (RCE) in the renderer sandbox of Chrome by a single visit to a malicious site.
The post Attack of the clones:…
Beginner’s guide to GitHub repositories: How to create your first repo
https://github.blog/2024-06-24-beginners-guide-to-github-repositories-how-to-create-your-first-repo/
Published: June 24, 2024 13:00
Git started on your first repository in the third installment of GitHub for Beginners. Discover the essential features and settings to manage your projects effectively.
The post Beginner’s guide to GitHub repositories: How to create your first repo…
Execute commands by sending JSON? Learn how unsafe deserialization vulnerabilities work in Ruby projects
https://github.blog/2024-06-20-execute-commands-by-sending-json-learn-how-unsafe-deserialization-vulnerabilities-work-in-ruby-projects/
Published: June 20, 2024 15:00
Can an attacker execute arbitrary commands on a remote server just by sending JSON? Yes, if the running code contains unsafe deserialization vulnerabilities. But how is that possible? In this blog post, we’ll describe how unsafe deserialization…
GitHub Enterprise Server 3.13 is now generally available
https://github.blog/2024-06-18-github-enterprise-server-3-13-is-now-generally-available/
Published: June 18, 2024 17:02
With this version, customers can choose how to best scale their security strategy, gain more control over deployments, and so much more.
The post GitHub Enterprise Server 3.13 is now generally available appeared first on The GitHub Blog.
Unlocking the power of unstructured data with RAG
https://github.blog/2024-06-13-unlocking-the-power-of-unstructured-data-with-rag/
Published: June 13, 2024 16:00
Unstructured data holds valuable information about codebases, organizational best practices, and customer feedback. Here are some ways you can leverage it with RAG, or retrieval-augmented generation.
The post Unlocking the power of unstructured data with…
GitHub Availability Report: May 2024
https://github.blog/2024-06-12-github-availability-report-may-2024/
Published: June 12, 2024 19:00
In May, we experienced one incident that resulted in degraded performance across GitHub services.
The post GitHub Availability Report: May 2024 appeared first on The GitHub Blog.
Leveraging technology on the frontlines of emergency: How communities of developers are taking action
https://github.blog/2024-06-12-leveraging-technology-on-the-frontlines-of-emergency-how-communities-of-developers-are-taking-action/
Published: June 12, 2024 16:37
From sending emergency alerts about nearby fires to mapping services in refugee camps, developers are taking action to solve global problems.
The post Leveraging technology on the frontlines of emergency: How communities of developers are taking action…
How we improved push processing on GitHub
https://github.blog/2024-06-11-how-we-improved-push-processing-on-github/
Published: June 11, 2024 17:00
Pushing code to GitHub is one of the most fundamental interactions that developers have with GitHub every day. Read how we have significantly improved the ability of our monolith to correctly and fully process pushes from our users.
The post How we…
10 years of the GitHub Security Bug Bounty Program
https://github.blog/2024-06-11-10-years-of-the-github-security-bug-bounty-program/
Published: June 11, 2024 16:00
Let’s take a look at 10 key moments from the first decade of the GitHub Security Bug Bounty program.
The post 10 years of the GitHub Security Bug Bounty Program appeared first on The GitHub Blog.
Top 12 Git commands every developer must know
https://github.blog/2024-06-10-top-12-git-commands-every-developer-must-know/
Published: June 10, 2024 13:00
The latest installment of GitHub for Beginners, where we cover the essential Git commands to get you Git-literate.
The post Top 12 Git commands every developer must know appeared first on The GitHub Blog.
How GitHub reduced testing time for iOS apps with new runner features
https://github.blog/2024-06-03-how-github-reduced-testing-time-for-ios-apps-with-new-runner-features/
Published: June 3, 2024 16:45
Learn how GitHub used macOS and Apple Silicon runners for GitHub Actions to build, test, and deploy our iOS app faster.
The post How GitHub reduced testing time for iOS apps with new runner features appeared first on The GitHub Blog.