The Register on MSN

GitHub moves to tighten npm security amid phishing, malware plague

Hundreds of compromised packages pulled as registry shifts to 2FA and trusted publishing GitHub, which owns the npm registry ...

GitHub tightens npm security with mandatory 2FA, access tokens

GitHub is introducing a set of defenses against supply-chain attacks on the platform that led to multiple large-scale ...
The Hacker News

GitHub Mandates 2FA and Short-Lived Tokens to Strengthen npm Supply Chain Security

GitHub enforces FIDO 2FA and seven-day token limits after Shai-Hulud npm attack to boost supply chain security.
The Hacker News

Self-Replicating Worm Hits 180+ npm Packages to Steal Credentials in Latest Supply Chain Attack

"Each published package becomes a new distribution vector: as soon as someone installs it, the worm executes, replicates, and ...
InfoWorld

GitHub introduces registry for finding MCP servers

GitHub MCP Registry makes Model Context Protocol servers with GitHub repos discoverable from Visual Studio Code.

OpenAI Rolls Out GPT-5-Codex, a New AI Model to Take On GitHub Copilot and Cursor

OpenAI has introduced GPT-5 Codex, a cutting-edge coding AI designed to rival GitHub Copilot and Cursor AI. With improved code generation, debugging, and context understanding, GPT-5 Codex sets a new ...

Unlock Your Potential: Discover GitHub and Level Up with Microsoft & Mecer Inter-Ed Training

GitHub is the world’s largest and most popular platform for version control and collaborative software development. At its ...

GitHub Spec Kit Updates : The Secret to Smarter, Faster AI Development Workflows

Explore GitHub Spec Kit's dynamic features, including project templates, Windows compatibility, and API management for developers.
TheServerSide

Why GitHub renamed its master branch to main

Since its inception, the Git DVCS tool's default branch name was set to master. Every Git repository had a master branch unless a developer took explicit steps to remove it, which was rarely ever done ...