Please turn JavaScript on
Find more feeds
The latest security news for developers - The GitHub Blog icon

The latest security news for developers - The GitHub Blog

Want to stay in touch with the latest updates from The latest security news for developers - The GitHub Blog? That's easy! Just subscribe clicking the Follow button below, choose topics or keywords for filtering if you want to, and we send the news to your inbox, to your phone via push notifications or we put them on your personal page here on follow.it.

Reading your RSS feed has never been easier!

Website title: The latest security news for developers - The GitHub Blog

Is this your feed? Claim it!

Publisher:  Unclaimed!
Message frequency:  0.12 / day

Message History

Investigating unauthorized access to GitHub’s internal repositories

On Monday May 18, we detected and contained a compromise of an employee device involving a poisoned VS Code extension published by a third party. We removed the malicious extension version, isolated the endpoint, and began incident response imme...


Read full story
Raising the bar: Quality, shared responsibility, and the future of GitHub’s bug bounty program

The security research community is one of GitHub’s greatest assets. Every year, researchers from around the world help us find and fix vulnerabilities, making the platform safer for over 180 million developers. Our bug bounty program exists because we believe that collaboration with external researchers is one of the most effective ways to improve security, and we remain deep...


Read full story
Securing the git push pipeline: Responding to a critical remote code execution vulnerability
Read full story
Hack the AI agent: Build agentic AI security skills with the GitHub Secure Code Game
Read full story
How exposed is your code? Find out in minutes—for free
Read full story