To help strengthen security efforts for Aussie users, GitHub has launched two new security developer tools. Since the security alerts were launched, Github has alerted it’s users to more than 5 million vulnerabilities across the open source projects of which Github users have resolved more than 800,000 of these.
GitHub Security Advisory API : enables developers to proactively identify threads in code by automating security vulnerability protection, code scanning, and security advisory services for projects and organizations.
Security Vulnerability Alerts for Java and .NET Projects: Java and .NET support for security vulnerability alerts, providing maintainers with access to the dependency graph and receive security alerts whenever their repositories depend on packages with known security vulnerabilities.
Another highlight/update announced at Universe includes:
- GitHub Actions: GitHub Actions allows you to build, connect, execute, and share code containers to run your software development workflow. Easily build, package, release, update, monitor, and deploy your project, in any language – on GitHub or any external system – without having to run code yourself. GitHub Actions is your workflow: built by you, run by us.
You can read it about it more in this blog post here. Additionally, the full Octoverse report, which is an overview of all GitHub projects, people, and teams of 2017 – can be found here.
