The novel malware strain is being dubbed Shai-Hulud — after the name for the giant sandworms in Frank Herbert’s Dune novel ...

A supply chain attack involving malicious GitHub Action workflows has impacted hundreds of repositories and thousands of secrets.

GitHub is struggling to contain an ongoing attack that’s flooding the site with millions of code repositories. These repositories contain obfuscated malware that steals passwords and cryptocurrency ...

GitHub CEO Thomas Dohmke announced on Monday that he’s stepping down from his role. Dohmke will remain at the Microsoft-owned company until the end of the year, after which he will depart to become “a ...

Community driven content discussing all aspects of software development from DevOps to design patterns. A Git repository is of very little use if it resides entirely on your remote GitHub or GitLab ...

To prevent similar compromises in the future, pin GitHub Actions to commit hashes instead of version tags and use GitHub's allow-listing feature to restrict unauthorized actions. Those supply chain ...

Shelby Brown (she/her/hers) is an editor for CNET's services team. She covers tips and tricks for apps, operating systems and devices, as well as mobile gaming and Apple Arcade news. Shelby also ...

Update 8/5/25: Added Toptal's statement at the end of the article, which says their investigation determined noone was impacted by this breach. Hackers compromised Toptal's GitHub organization account ...

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...

GitHub CEO Thomas Dohmke mandated the use of the platform for all employees, emphasizing its integral role in the company culture. Under his leadership, GitHub experienced significant growth, ...