GitHub Updates Blog provides announcements, product updates, and insights into new features and enhancements on the GitHub platform. Developers can stay informed about changes to GitHub's developer tools, collaboration features, and security offerings. With GitHub's commitment to empowering developers and supporting open source communities, the GitHub Updates Blog serves as a resource for staying connected with the latest developments in software development.

GitHub Changelog

GitHub MCP Server now includes dependency vulnerability scanning via a new Dependabot toolset, currently in public preview. It allows AI coding agents in MCP-compatible IDEs to scan code changes for vulnerable dependencies before committing or opening a pull request. The toolset queries the GitHub Advisory Database and returns affected packages, severity levels, and recommended fixed versions. An optional advanced-security plugin provides a more tailored experience. Available for repositories with Dependabot alerts enabled, with setup instructions for GitHub Copilot CLI and VS Code.

Dependency scanning with GitHub MCP Server is in public preview