GitHub is now also a CVE CNA and can issue its own CVE numbers for bugs disclosed in projects hosted on the platform.

How GitHub Employees Use GitHub For Projects Beyond Coding Hubbers found that their online tool, designed for managing large software projects, works for any collaborative process.

Cybercriminals are exploiting GitHub to spread credential-stealing malware through fake repositories, cybersecurity firm Kaspersky has warned. The campaign, dubbed “GitVenom,” involves ...

GitHub projects have been targeted with malicious commits and pull requests, in an attempt to inject backdoors into these projects. Most recently, the GitHub repository of Exo Labs, an AI and ...

On September 5, 2025, GitGuardian discovered GhostAction, a massive supply chain attack affecting 327 GitHub users across 817 ...

GitHub ‘Sponsors’ Now Lets Users Back Open Source Projects GitHub’s new Patreon-like service aims to reward developers for maintaining free software, and bolster the open source ecosystem.

While GitHub is a commercial system, it offers unlimited free-of-charge usage for public projects. But what are the legal terms under which those public projects are made available?

Built like a spreadsheet, GitHub Projects was designed to let teams plan, collaborate and track work in a central location to stay organized.