Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible code, a technique that’s flummoxing traditional defenses designed to ...
TechCrunch

Former GitHub CEO raises record $60M dev tool seed round at $300M valuation

Former GitHub CEO Thomas Dohmke has raised the largest-ever seed round for a dev tool startup, according to its lead backer, Felicis. The startup, Entire, has raised $60 million at a $300 million ...
GitHub

Pricing changes for GitHub Actions

TLDR: We’re postponing the announced billing change for self-hosted GitHub Actions to take time to re-evaluate our approach. We are continuing to reduce hosted-runners prices by up to 39% on January 1 ...
GitHub

Checkout with Cleanup Action

This requires a minimum Actions Runner version of v2.329.0 to access the persisted credentials for Docker container action scenarios. The auth token is persisted in ...
Redmond Magazine

Microsoft Adds ARM64 Support and GitHub Copilot Integration in SSMS 22 Preview 3

Microsoft has released SQL Server Management Studio (SSMS) 22 Preview 3, introducing native ARM64 support and deeper GitHub Copilot integration for AI-assisted coding and inline chat. The preview also ...
blockchain

GitHub Introduces BYOK Support for JetBrains and Xcode in Public Preview

GitHub has launched public preview support for 'Bring Your Own Key' (BYOK) in JetBrains IDEs and Xcode, enhancing flexibility and control for developers. GitHub has announced the public preview of its ...
Bleeping Computer

Salesloft: March GitHub repo breach led to Salesforce data theft attacks

Salesloft says attackers first breached its GitHub account in March, leading to the theft of Drift OAuth tokens later used in widespread Salesforce data theft attacks in August. Salesloft is a widely ...