-
GitHub Copilot: The agent awakens
Introducing agent mode for GitHub Copilot in VS Code, announcing the general availability of Copilot Edits, and providing a first look at our SWE agent. The post GitHub Copilot: The agent awakens appeared first on The GitHub Blog. When we introduced GitHub Copilot back in 2021, we had a clear goal: to make developers’ lives…
-
5 tips for promoting your open source project
Three open source experts offer their advice on sharing open source projects with the world. The post 5 tips for promoting your open source project appeared first on The GitHub Blog. After months or years of hard work, you’ve just pushed your open source project to GitHub and made it public. Now it’s time to…
-
How to scan a full commit history to detect sensitive secrets
Secrets left exposed in outdated repositories pose significant risk for data breaches. For example, a still-active secret key can be exposed, leaving it vulnerable to exploitation. Secrets include access keys, API tokens, private keys, and other sensitive values. In this article, you’ll learn how to use GitLab Secret Detection to scan a repository’s full commit…
-
Tutorial: Security scanning in air-gapped environments
Air-gapped environments are computer networks or systems that are physically isolated from unsecured networks, such as the public internet or unsecured local area networks. This isolation is implemented as a security measure to protect sensitive data and critical systems from external cyber threats by providing: Enhanced security: By physically isolating systems from external networks, air-gapped…
-
How to harmonize Agile sprints with product roadmaps
Picture this: Product and Development teams are working in isolation. Product has created a 12-month roadmap and communicated it to internal stakeholders but didn’t review it with their development team. Dev starts building the features planned for the upcoming sprint without considering the broader product roadmap, leading to missed opportunities to optimize timing, like running…
-
4 steps to building a natural language search tool
Empowering humanitarian action with open source: A natural language search tool for UN Resolutions. The post 4 steps to building a natural language search tool appeared first on The GitHub Blog. “We have a problem. Our current search method for sifting through PDFs is extremely manual and time consuming. Is there an easier way?” As…
-
Cybersecurity researchers: Digital detectives in a connected world
Discover the exciting world of cybersecurity research: what researchers do, essential skills, and actionable steps to begin your journey toward protecting the digital world. The post Cybersecurity researchers: Digital detectives in a connected world appeared first on The GitHub Blog. Have you ever considered yourself a detective at heart? Cybersecurity researchers are digital detectives, uncovering…
-
The Co-Create Program: How customers are collaborating to build GitLab
This past year, over 800 community members have made more than 3,000 contributions to GitLab. These contributors include team members from global organizations like Thales and Scania, who are helping shape GitLab’s future through the Co-Create Program — GitLab’s collaborative development program where customers work directly with GitLab engineers to contribute meaningful features to the…
-
How GitLab uses prompt guardrails to help protect customers
Imagine introducing a powerful new AI tool that boosts your team’s productivity — accelerating code development, resolving issues faster, and streamlining workflows. The excitement is palpable, but questions about security and compliance quickly arise. How do you manage the risk of AI inadvertently exposing sensitive data or responding to malicious prompts? This is where prompt…
-
Automating cybersecurity threat detections with GitLab CI/CD
This blog post is the second post in a series about GitLab Universal Automated Response and Detection (GUARD). Writing and deploying security threat detections in an organization’s security information event management platform (SIEM) is a critical component of a successful cybersecurity program. Moving from manual detection engineering to a fully automated process by implementing Detections…