InfoQ Homepage github Content on InfoQ
-
GitHub Was down Multiple Times Last February: Here's Why
GitHub completed its internal investigation about what caused multiple service interruptions that affected its service last February for over eight hours. The root cause for this was a combination of unexpected database load variation and database configuration issues.
-
GitHub to Acquire Npm in an Effort to Provide Continuity and Improvement
GitHub's CEO Nat Friedman has announced an agreement to buy npm, the default package manager for the Node.js ecosystem. Npm will remain free to use and will get the required investments to keep it fast and reliable, says Friedman, as well as more secure.
-
GitHub Actions API Released into Public Beta
GitHub announced the release into public beta of their Actions API. The Actions API can be used to manage GitHub Actions via a REST API. Endpoints available within the API allow for managing artifacts, secrets, runners, and workflows.
-
GitHub Releases ML-Based "Good First Issues" Recommendations
GitHub shipped an updated version of good first issues feature which uses a combination of both a machine learning (ML) model that identifies easy issues, and a hand curated list of issues that have been labeled "easy" by project maintainers. New and seasoned open source contributors can use this feature to find and tackle easy issues in a project.
-
Algorithmia Adds GitHub Integration to Machine Learning Platform
Algorithmia, an AI model management automation platform for data scientists and machine learning (ML) engineers, now integrates with GitHub.
-
New GitHub CLI Enables Working with Issues and PRs from the Command Line
GitHub has just beta-released GitHub CLI, an open-source tool that allows developers to work with issues and pull requests from the command line. Written in Go, GitHub CLI can be installed on Linux, macOS, and Windows.
-
GitHub Launches Mobile App, Notifications Beta, and Code Navigation Features
At this year's Universe Conference, GitHub made a number of announcements aimed at improving developer experience in the daily use of the platform, including a mobile client app and notification, as well as promoting workflow automation tools such as GitHub Actions and GitHub Packages to general availability.
-
GitHub Improves Vulnerability Workflows and Becomes CVE Numbering Authority
Along with Semmle acquisition, GitHub has disclosed a number of improvements aimed to make it easier for maintainers and developers to fix and protect against vulnerabilities. This includes the possibility of creating a security advisory and assigning it a CVE number directly from GitHub UI.
-
GitHub to Integrate Semmle Code Analysis for Continuous Vulnerability Detection
With the acquisition of startup Semmle, GitHub aims to make continuous vulnerability detection part of their continuous integration/continuous deployment service.
-
Microsoft to Consolidate .NET Repositories on GitHub
Microsoft has announced they will transform their fine-grained repository structure for .NET Core to consolidate a number of foundational .NET Core repositories, including dotnet/coreclr and dotnet/corefx. Microsoft also plans to further consolidate ASP.NET repositories.
-
GitHub Launches Actions-Powered CI/CD Service, Free for Public Repos
Based on developer feedback, GitHub has just introduced its own Continuous Integration/Continuous Delivery (CI/CD) service for GitHub Actions. Currently in beta, the new service will be free for public repos and will support self-hosting.
-
GitHub Adds Dependabot Automated Security PRs and More Security-Related Features
GitHub has announced a number of new features aimed to help developers secure their code, including the ability to create PRs for any dependencies needing an update to include security fixes, integration with WhiteSource data for better vulnerability assessment, dependency insights, and more.
-
GitHub Package Registry Integrates Source Code and Packages
GitHub launched a limited beta of its new Package Registry, aiming to simplify publishing public or private packages under the same user interface as source code. GitHub Package Registry supports npm, Maven, RubyGems, NuGet, and Docker images, and support for more package management tools is already on its roadmap.
-
GitHub Draft Pull Requests Enable New Collaboration Workflows
GitHub has introduced draft pull requests to handle work-in-progress scenarios where you might want to open a PR or start a conversation with your teammates before your code is ready to be reviewed.
-
Dependabot Automatically Creates GitHub PRs to Fix Your Vulnerabilities
Leveraging GitHub Security Advisory API, Dependabot aims to help developers track their dependencies, monitoring the security of their programs, and making sure any potential vulnerabilities are removed as easily as possible by automatically creating PRs to resolve them.