GitHub Updates Blog provides announcements, product updates, and insights into new features and enhancements on the GitHub platform. Developers can stay informed about changes to GitHub's developer tools, collaboration features, and security offerings. With GitHub's commitment to empowering developers and supporting open source communities, the GitHub Updates Blog serves as a resource for staying connected with the latest developments in software development.

GitHub Changelog

GitHub has added OIDC authentication support for Dependabot and code scanning at the organization level, allowing dynamic short-lived credentials from cloud identity providers instead of storing long-lived secrets in repositories. Organization admins can centrally manage private registry access for all repos. Currently supported registries include AWS CodeArtifact, Azure DevOps Artifacts, and JFrog Artifactory, with Cloudsmith and Google Artifact Registry coming within four weeks. The feature is generally available on github.com and will ship in GitHub Enterprise Server 3.22.

OIDC support for Dependabot and code scanning