Search

github.blog › latest

The latest blogs from GitHub

…AI & ML Hack the AI agent: Build agentic AI security skills with the GitHub Secure Code Game Learn to find and exploit real-world agentic AI vulnerabilities through five progressive challenges in…

May 7, 2026 · Landon Cox

Top stories

github.blog

GitHub recognized as a Leader in the Gartner® Magic Quadrant™ for Enterprise AI Coding Agents for the third year in a row

5d ago

github.blog

Audit repository Copilot cloud agent configuration via the REST API - GitHub Changelog

1w ago

github.blog › security › application-security

GitHub expands application security coverage with AI‑powered detections

…AI & ML Hack the AI agent: Build agentic AI security skills with the GitHub Secure Code Game Learn to find and exploit real-world agentic AI vulnerabilities through five progressive challenges in…

Mar 23, 2026 · Marcelo Oliveira

github.blog › changelog

Secret scanning with GitHub MCP Server is now generally available - GitHub Changelog

…In GitHub Copilot CLI, run /plugin install advanced-security@copilot-plugins . In Visual Studio Code, install the advanced-security agent plugin, then use /secret-scanning in Copilot Chat to start your prompt…

May 5, 2026 · Allison

github.blog › open-source

Open Source Archives

…Community-powered security with AI: an open source framework for security research Announcing GitHub Security Lab Taskflow Agent, an open source and collaborative framework for security research with AI. Light waves, rising…

May 5, 2026 · Abigail Cabunoc Mayes

github.blog › enterprise-software

Enterprise software Archives

Featured Improving token efficiency in GitHub Agentic Workflows Agentic workflows that run on every pull request can quietly accumulate large API bills. Here’s how we instrumented our own production workflows, found…

May 7, 2026 · Landon Cox

github.blog › security

Investigating unauthorized access to GitHub-owned repositories

…AI & ML Hack the AI agent: Build agentic AI security skills with the GitHub Secure Code Game Learn to find and exploit real-world agentic AI vulnerabilities through five progressive challenges in…

May 20, 2026 · Alexis Wales

github.blog › changelog

Copilot cloud agent's validation tools are now 20% faster - GitHub Changelog

Back to changelog When Copilot cloud agent writes code, it automatically runs GitHub’s security and quality validation tools, including CodeQL , the GitHub Advisory Database , secret scanning , and Copilot code review . If…

Apr 10, 2026 · Allison

github.blog › ai-and-ml › github-copilot

Improving token efficiency in GitHub Agentic Workflows

…Thankfully, the agentic-workflows security architecture uses an API proxy to prevent agents from directly accessing authentication credentials. This proxy gave us a way to capture token usage across all runs in…

May 7, 2026 · Landon Cox, Mara Kiefer

github.blog › ai-and-ml › machine-learning

Machine learning Archives

…Security architecture of GitHub Agentic Workflows GitHub Agentic Workflows are built with isolation, constrained outputs, and comprehensive logging. Learn how our threat model and security architecture help teams run agents safely in…

May 7, 2026 · Landon Cox

2 sources covering this — show 1 more

• LLMs Archives github.blog

github.blog › developer-skills

Developer skills Archives

…Here’s what I learned about working better with coding agents. GitHub for Beginners: Getting started with GitHub security Learn how to secure your projects and keep them safe with GitHub Advanced…

May 11, 2026 · Kedasha Kerr