GitHub addresses two recent incidents and says it aims to improve reliability amid AI growth, focusing on “availability first, then capacity, then new features”
or worse, bluesky.@theo:Github has been down for most of the day. I'm so tired of this. Never been so ready to move on. [image]Ahmet /@bruvimtired:we should all get together and finish building gitbru...
GitHub says it has begun collecting pseudonymous client-side telemetry from command-line interface (CLI) users and enabled it by default
Opt-out instructions included if you're not keen on GitHub watching you in the name of product improvement — Users of GitHub's command-line interface (CLI) who value privacy, beware.
OpenAI says a GitHub workflow used to sign its macOS apps downloaded a malicious Axios library on March 31, but no user data or internal system was compromised
OpenAI said Friday that it found evidence that one of its internal tools downloaded a compromised update from a recently infected, legitimate open-source software library.
OpenAI says a GitHub workflow used to sign its macOS apps downloaded a malicious Axios library on March 31, but no user data or internal system was compromised
OpenAI said Friday that it found evidence that one of its internal tools downloaded a compromised update from a recently infected, legitimate open-source software library.
After Copilot injected an ad into a pull request on GitHub, referencing Raycast, GitHub says it “disabled product tips entirely thanks to the feedback”
After Copilot injected an ad into a pull request on GitHub, referencing Raycast, GitHub says it “disabled product tips entirely thanks to the feedback”
Over 11,000 pull requests have been spotted with the same “tips” injected into descriptions.
A GitHub user published a newer version of iPhone exploit kit DarkSword; iVerify co-founder Matthias Frielingsdorf says the exploits “will work out of the box”
Lorenzo Franceschi-Bicchierai Zack Whittaker — Last week, cybersecurity researchers uncovered …
A new version of iPhone exploit kit DarkSword has been leaked on GitHub; iVerify co-founder Matthias Frielingsdorf says the exploits “will work out of the box”
Lorenzo Franceschi-Bicchierai Zack Whittaker — Last week, cybersecurity researchers uncovered …
Extortion group Crimson Collective claims it breached Red Hat's private GitHub repositories, stealing nearly 570GB from 28K projects; Red Hat confirms a breach
An extortion group calling itself the Crimson Collective claims to have breached Red Hat's private GitHub repositories …
GitHub outlines plans to secure npm following multiple supply-chain attacks, including deprecating legacy classic tokens and migrating users to FIDO-based 2FA
Addressing a surge in package registry attacks, GitHub is strengthening npm's security with stricter authentication, granular tokens …