ZDNet

GitHub rolls out dependency review, vulnerability alerts for pull requests

GitHub will roll out dependency review, a security assessment for pull requests, in the coming weeks to developers. SEE: Meet the hackers who earn millions for saving the web, one bug at a time (cover ...
Bleeping Computer

GitHub can now alert of supply-chain bugs in new dependencies

GitHub can now block and alert you of pull requests that introduce new dependencies impacted by known supply chain vulnerabilities. This is achieved by adding the new Dependency Review GitHub Action ...
InfoWorld

GitHub introduces code review controls

New controls in the popular code-sharing site are designed to deal with ‘drive-by‘ pull request approvals and ‘spammy’ change requests. GitHub has added code review restrictions and improved mobile ...
The Next Web

GitHub launches Suggested Changes to make it easier to collaborate within pull requests

GitHub today announced Suggested Changes: a new feature that promises to make it easier to implement and action changes in pull requests. Here’s how it works. Suppose you’re collaborating on a ...