InfoQ Homepage github Content on InfoQ
-
Hugging Face Brings Open-Source LLMs to GitHub Copilot Chat in VS Code
Hugging Face has introduced a new integration that allows developers to connect Inference Providers directly with GitHub Copilot Chat in Visual Studio Code. The update means that open-source large language models — including Kimi K2, DeepSeek V3.1, GLM 4.5, and others — can now be accessed and tested from inside the VS Code editor, without the need to switch platforms or juggle multiple tools.
-
Researcher Unearths Thousands of Leaked Secrets in GitHub’s “Oops Commits”
Security researcher Sharon Brizinov, in collaboration with Truffle Security, has conducted a sweeping investigation of GitHub's "oops commits", force-pushed or deleted commits that remain archived, and uncovered thousands of secrets left behind, including high-value tokens and admin-level credentials
-
Hugging Face Releases Trackio, a Lightweight Open-Source Experiment Tracking Library
Hugging Face has introduced Trackio, a new open-source Python library for experiment tracking designed to be lightweight, transparent, and easy to integrate. Built as a drop-in replacement for Weights & Biases (wandb), Trackio offers local dashboards by default and seamless syncing with Hugging Face Spaces for sharing and collaboration.
-
AWS Lambda Adds Support for GitHub Actions
AWS has recently announced that AWS Lambda now supports GitHub Actions, providing a simplified way to deploy changes to Lambda functions using declarative configuration in GitHub Actions workflows. The new option supports both .zip file and container image deployments.
-
LangChain Launches Open SWE, an Open-Source Asynchronous Coding Agent
LangChain has released Open SWE, a fully open-source, asynchronous coding agent designed to operate in the cloud and handle complex software development tasks. The company says Open SWE represents a shift away from real-time “copilot” assistants toward more autonomous, long-running agents that integrate directly with a developer’s existing workflows.
-
Google Launches Gemini CLI: Open-Source Terminal AI Agent for Developers
Google has released Gemini CLI, a new open-source AI command-line interface that brings the full capabilities of its Gemini 2.5 Pro model directly into developers’ terminals. Designed for flexibility, transparency, and developer-first workflows, Gemini CLI provides high-performance, natural language AI assistance through a lightweight, locally accessible interface.
-
GitHub CLI Enhances Support for Triangular Workflows
In April 2025, GitHub announced an update to its Command Line Interface (CLI), introducing enhanced support for triangular workflows - a common pattern among open-source contributors who work with forked repositories.
-
GitHub Unveils Prototype AI Agent for Autonomous Bug Fixing
GitHub unveils a groundbreaking AI coding agent that autonomously identifies bugs and proposes fixes via pull requests, marking a shift towards independent code maintenance. Leveraging advanced semantic analysis and vulnerability libraries, this tool aims to alleviate developers' workload, allowing them to prioritize complex problem-solving.
-
Microsoft Open Sources the GitHub Copilot Chat Extension
At its Build 2025 conference, Microsoft announced plans to open source over the next few months the code behind the GitHub Copilot Chat extension under the MIT license and refactor core AI capabilities directly into the main VS Code codebase. The move, if completed, may affect the ability of current for-pay AI code editors to compete purely on features.
-
Microsoft Announces AI Agent and Platform Updates at Build 2025
At its annual developer conference, Build 2025, Microsoft introduced a set of updates focused on expanding the role of AI agents across Windows, GitHub, Azure, and Microsoft 365.
-
How Allegro Does Automated Code Migrations for over 2000 Microservices
Allegro shared the details of the process it uses to manage code migrations at scale. The company combined GitHub’s Dependabot and OpenRewrite projects into a custom solution that helps developers perform mundane code migration tasks automatically across numerous source code repositories. The company tackled many edge cases to ensure the process operates smoothly, relieving initial trust issues.
-
GitHub Announces Public Preview of GitHub MCP Server
GitHub recently announced the official release of its Model Context Protocol (MCP) server, which is in public preview as of April 4th, 2025. Engineers can integrate with GitHub APIs using this open-source server, enabling automation and AI-powered interactions with the GitHub ecosystem.
-
How GitHub Built Sub-Issues into Its Issue Tracking System
Coinciding with the generally availability of sub-issues, GitHub engineer Shaun Wong shared insights about how they added support for hierarchical issue structures, the lessons learned during development, and the key role sub-issues played in their workflow.
-
Compromised GitHub Action Highlights Risks in CI/CD Supply Chains
The popular tj-actions/changed-files GitHub Action used by thousands of repositories recently compromised those repositories, exposing a critical weakness in how open-source Actions are published and consumed.
-
Secret Sprawl in Public Repos is Worse Than Ever, Finds New Report
Security firm GitGuardian has announced a report showing that the unintended exposure of credentials such as API keys and passwords, known as "secrets sprawl," has worsened significantly during 2024. The report found an increase of 25% in secrets found in public GitHub code repositories compared to the previous year.