Dark Reading

Code-Injection Bugs Bite Google, Apache Open Source GitHub Projects

A pair of security vulnerabilities discovered in the GitHub environments of two very popular open source projects from Apache and Google could be used to stealthily modify project source code, steal ...
Wired

GitHub Takes Aim at Open Source Software Vulnerabilities

Open source software has the potential to be very secure. Unlike proprietary code that can only be accessed directly by its own developers, anyone can vet open source projects to spot flaws and bugs.
TechCrunch

Dashlane publishes its source code to GitHub in transparency push

Password management company Dashlane has made its mobile app code available on GitHub for public perusal, a first step it says in a broader push to make its platform more transparent. The Dashlane ...
Wired

GitHub Moves to Guard Open Source Against Supply Chain Attacks

Following the 2020 SolarWinds cyberespionage campaign, in which Russian hackers slipped tainted updates into a widely used IT management platform, a series of further software supply chain attacks ...
Ars Technica

Winamp deletes entire GitHub source code repo after a rocky few weeks

Winamp, through its Belgian owner Llama Group, posted the source for its “Legacy Player Code” on September 24 so that developers could “contribute their expertise, ideas, and passion to help this ...

Former GitHub CEO raises record $60M dev tool seed round at $300M valuation

Thomas Dohmke's new startup offers an AI system to allow developers to better manage all the code AI agents produce.
Geeky Gadgets

Combine Claude Code & GitHub to Automate Your Development Workflows

What if you could automate tedious development tasks, deploy applications with a single click, and manage your codebase from anywhere in the world, all without sacrificing quality or control? It might ...