CLI

Learn about a community-developed framework for how to think about this problem holistically and how to use GitHub, particularly, to improve the security in the second half of your software supply chain. The post The second half of software supply chain security on GitHub appeared first on The GitHub Blog.

Generate and verify signed attestations for anything you make with GitHub Actions. The post Introducing Artifact Attestations–now in public beta appeared first on The GitHub Blog.

It’s been a while since we’ve published our Release Radar. You can blame IRL conferences coming back, getting influenza, and being struck down by the weather. But those are just me problems. While I’ve been down or travelling, the community has been hard at work shipping new releases and new projects. So, we thought we’d […]