Search

github.blog › security › web-application-security

Web application security Archives

…Maintaining and developing complex and risky code is never easy. See how we addressed the challenges of securing our SAML implementation with this behind-the-scenes look at building trust in our…

Apr 14, 2026 · Dorothy Pearce

github.blog › changelog

CodeQL 2.25.4 adds Swift 6.3.1 support, improvements to C# and Java, and more - GitHub Changelog

Back to changelog CodeQL is the static analysis engine behind GitHub code scanning , which finds and remediates security issues in your code. We’ve recently released CodeQL 2.25.4 , which adds…

May 12, 2026 · Allison

github.blog › open-source

Open Source Archives

…Open source is hitting an “Eternal September.” As contribution friction drops, maintainers are adapting with new trust signals, triage approaches, and community-led solutions. AI-supported vulnerability triage with the GitHub Security…

May 5, 2026 · Abigail Cabunoc Mayes

github.blog › changelog

Cloud and local sandboxes for GitHub Copilot now in public preview - GitHub Changelog

…Each session inherits your existing Copilot cloud agent policies, so the security controls your org already trusts apply on day one with no additional setup. Key use cases developers and teams can…

Jun 2, 2026 · Allison

github.blog › latest

The latest blogs from GitHub

…Getting started with Markdown Discover how to format and edit your comments and posts using Markdown. Security Securing the git push pipeline: Responding to a critical remote code execution vulnerability How we…

May 7, 2026 · Landon Cox

2 sources covering this — show 1 more

• The latest on AI & ML github.blog

github.blog › security › supply-chain-security

Investing in the people shaping open source and securing the future together

…Open source maintainers deserve better support and security, and we’re listening and investing. Strengthening open source security, together Today, we are joining Anthropic, Amazon Web Services (AWS), Google, and OpenAI with…

Mar 17, 2026 · Kevin Crosby

github.blog › ai-and-ml › generative-ai

The latest on Generative AI

…Introducing custom agents in GitHub Copilot for observability, IaC, and security Use partner-built Copilot agents to debug, secure, and automate engineering workflows across your terminal, editor, and github.com. Measuring what…

May 7, 2026 · Landon Cox

github.blog › ai-and-ml › machine-learning

Machine learning Archives

…Security architecture of GitHub Agentic Workflows GitHub Agentic Workflows are built with isolation, constrained outputs, and comprehensive logging. Learn how our threat model and security architecture help teams run agents safely in…

May 7, 2026 · Landon Cox

2 sources covering this — show 1 more

• LLMs Archives github.blog

github.blog › open-source › maintainers

Maintainers Archives

…Investing in the people shaping open source and securing the future together See how GitHub is investing in open source security funding maintainers, partnering with Alpha-Omega, and expanding access to help…

May 5, 2026 · Abigail Cabunoc Mayes