GitHub

Opening up the WinAmp source to all goes badly as owners delete entire repo

As badly as the later development of the player itself, really

Software16 Oct 2024 | 152

You probably want to patch this critical GitHub Enterprise Server bug now

Unless you're cool with an unauthorized criminal enjoying admin privileges to comb through your code

Patches21 Aug 2024 |

Who needs GitHub Copilot when you can roll your own AI code assistant at home

Hands on Here's how to get started with the open source tool Continue

AI + ML18 Aug 2024 | 28

GitHub rolls back database change after breaking itself

Git blame an infrastructure update

Cloud Infrastructure Month14 Aug 2024 | 14

Malware crew Stargazers Goblin used 3,000 GitHub accounts to make bank

May even have targeted other malware gangs, and infosec researchers

Cyber-crime26 Jul 2024 | 9

FYI: Data from deleted GitHub repos may not actually be deleted

And the forking Microsoft-owned code warehouse doesn't see this as much of a problem

CSO25 Jul 2024 | 49

Coders' Copilot code-copying copyright claims crumble against GitHub, Microsoft

A few devs versus the powerful forces of Redmond – who did you think was going to win?

Software08 Jul 2024 | 40

GitHub Enterprise Server patches 10-outta-10 critical hole

On the bright side, someone made up to $30,000+ for finding it

Patches22 May 2024 | 3

Meet Pi-CARD: Serving up a digital assistant on Raspberry Pi

LLMs running on a dedicated card: The final frontier as hacker makes it so

AI + ML15 May 2024 | 6

Over 170K users caught up in poisoned Python package ruse

Supply chain attack targeted GitHub community of Top.gg Discord server

Cyber-crime25 Mar 2024 | 44

GitHub fixes pull request delay that derailed developers

Went down yesterday, too, longer and harder. Maybe we should call it GitFlub?

Software13 Mar 2024 | 5

GitHub struggles to keep up with automated malicious forks

Cloned then compromised, bad repos are forked faster than they can be removed

Security01 Mar 2024 | 26

What is GitHub Copilot Enterprise? You and your org just might find out firsthand

Big biz invited to like and subscribe, without fear of litigation

Devops27 Feb 2024 | 7

ANZ Bank test drives GitHub Copilot – and finds AI does give a helping hand

Expert Python programmers saw the most benefit

AI + ML10 Feb 2024 | 40

So, are we going to talk about how GitHub is an absolute boon for malware, or nah?

Microsoft says it's doing its best to crack down on crims

Research12 Jan 2024 | 23

Cryptojackers steal AWS credentials from GitHub in 5 minutes

Researchers just scratching surface of their understanding of campaign dating back to 2020

Research30 Oct 2023 | 3

Researcher bags two-for-one deal on Linux bugs while probing GNOME component

One-click exploit could potentially affect most major distros

Research10 Oct 2023 | 12

If you want to fund open source code via Patreon with GitHub, well now you can

Exploited open source maintainers get broader payment pleading options

Devops03 Oct 2023 | 4

GitHub Copilot, Amazon Code Whisperer sometimes emit other people's API keys

Final update AI dev assistants can be convinced to spill secrets learned during training

AI + ML19 Sep 2023 | 9

GitHub alienates developers by force feeding them AI recommendations

Decision to combine user-curated feed with algorithmic stuff leaves coders fuming

Devops13 Sep 2023 | 40

Microsoft and GitHub are still trying to derail Copilot code copyright legal fight

And so far, they might succeed: Where's the smoking gun?

AI + ML01 Jul 2023 | 66

Microsoft's GitHub under fire for DDoSing crucial open source project website

A tale of emergency firewalling, a little bit of victim blaming, and workflow scripts gone berserk

Devops28 Jun 2023 | 48

Warning: JavaScript registry npm vulnerable to 'manifest confusion' abuse

Failure to match metadata with packaged files is perfect for supply chain attacks

Research27 Jun 2023 | 12

Whose line is it anyway, GitHub? Innovation, not litigation, should answer

Opinion If Jesus was my Copilot, what would he do?

AI + ML19 Jun 2023 | 43

Surprise! GitHub finds 92% of developers love AI tools

We're fine being judged by code, now that we're getting an assist

AI + ML13 Jun 2023 | 16

GitHub accused of varying Copilot output to avoid copyright allegations

Copilot code-cloning case clarifies claims

AI + ML09 Jun 2023 | 53

This malicious PyPI package mixed source and compiled code to dodge detection

Oh cool, something else to scan for

Security02 Jun 2023 | 11

Absolute mad lad renders Doom in teletext

Sure is '90s in here

Offbeat31 May 2023 | 34

GitHub code search redesign can't find many fans

Poll Missing capabilities, bugs, unloved interface decisions dog engine revision – and what do you think?

Devops13 May 2023 | 17

GitHub, Microsoft, OpenAI fail to wriggle out of Copilot copyright lawsuit

Judge won't toss out two key charges, software source slurping case still on

Software12 May 2023 | 18

GitHub dumps frustrating code search engine for Rust-powered Blackbird

Here's hoping for fewer head-desk moments for devs

Devops09 May 2023 | 6

GitHub debuts pedigree check for npm packages via Actions

Publishing provenance possibly prevents problems

Security19 Apr 2023 | 4

Judge grants subpoena to ID Twitter source code leaker

Unmasking also in store for anyone who's 'posted, uploaded, downloaded or modified' tweet biz code

Software29 Mar 2023 | 33

CISA unleashes Untitled Goose Tool to honk at danger in Microsoft's cloud

Not a headline we expected to write today

CSO24 Mar 2023 | 11

GitHub publishes RSA SSH host keys by mistake, issues update

Getting connection failures? Don't panic. Get new keys

Security24 Mar 2023 | 34

GitHub Copilot learns new tricks, adopts this year's model

Armed with GPT-4, Microsoft's AI 'pair programmer' can tag pull requests, parrot documentation, talk about code

AI + ML22 Mar 2023 | 14

The npm registry's safe word is Socket

Exclusive GitHub's JavaScript failings are someone else's opportunity

Devops16 Mar 2023 | 9

One third wiped off value of GitLab shares, Wall Street didn't like weaker outlook

Investors nervous in same week that Silicon Valley Bank failed

Devops14 Mar 2023 | 6

GitHub rolls out mandatory 2FA for loads of devs next week

Engineers who contribute to public projects told to enroll

Software09 Mar 2023 | 11

Frankenstein malware stitched together from code of others disguised as PyPI package

Crime-as-a-service vendors mix and match components as needed by client

Research03 Mar 2023 | 3

Who writes Linux and open source software?

Opinion Developers and, more to the point, the companies that employ them

OSes24 Feb 2023 | 111

GitHub claims source code search engine is a game changer

When grep isn't good enough, try Blackbird

Devops07 Feb 2023 | 52

GitHub CEO says EU AI Act shouldn't apply to open source devs

FOSDEM Lawmakers said to be trying to align on the basics by 'early March'

AI + ML07 Feb 2023 | 5

Microsoft, GitHub, OpenAI urge judge to bin Copilot code rip-off case

We're not the bad guys in this, Azure empire says with a straight face

Devops31 Jan 2023 | 25

Midjourney, DeviantArt face lawsuit over AI-made art

Updated Lawyer known for GitHub Copilot case to argue artists' legal struggle

AI + ML16 Jan 2023 | 61

Should open source sniff the geopolitical wind and ban itself in China and Russia?

Opinion Can it even do that? And does FOSS deserve an exemption to sanctions?

Software01 Jan 2023 | 205

Crooks copy source code from Okta’s GitHub repository

The hack wraps up a year of bad security incidents for identity

Security23 Dec 2022 | 13

Study finds AI assistants help developers produce code that's more likely to be buggy

At the same time, tools like Github Copilot and Facebook InCoder make developers believe their code is sound

Software21 Dec 2022 | 61

GitHub adds admin controls to Copilot, paints 'Business' on the side, doubles price

Ah, the enterprise way

AI + ML09 Dec 2022 | 22

WASP malware stings Python developers

Info-stealing trojan hides in malicious PyPI packages on GitHub

Research16 Nov 2022 | 9

GitHub sets up private vulnerability reports for public repos to avoid 'naming and shaming'

No need for ignominy when a flaw is found

Security14 Nov 2022 | 5

Microsoft moves to tighten Azure DevOps security with granular access tokens

Narrowing permissions could be difference between mildly pwned and totally pwned corporate network

Devops11 Nov 2022 |

GitHub's Copilot flies into its first open source copyright lawsuit

Opinion It won't be the last

AI + ML11 Nov 2022 | 91

Dropbox admits 130 of its private GitHub repos were copied after phishing attack

Personal info and data safe, stolen code not critical, apparently

Cyber-crime01 Nov 2022 | 2

Purpleurchin cryptocurrency miners spotted scouring free GitHub, Heroku accounts

This is why we can't have nice things

Research27 Oct 2022 | 14

AI programming assistants mean rethinking computer science education

Analysis Boffins say educators need to deal with opportunities and risks of GitHub Copilot and pals

AI + ML20 Oct 2022 | 27