GitHub Updates Blog provides announcements, product updates, and insights into new features and enhancements on the GitHub platform. Developers can stay informed about changes to GitHub's developer tools, collaboration features, and security offerings. With GitHub's commitment to empowering developers and supporting open source communities, the GitHub Updates Blog serves as a resource for staying connected with the latest developments in software development.

GitHub Changelog

GitHub has released the Dependabot Proxy as open source under the MIT license. The HTTP proxy, built in Go, handles authentication when Dependabot connects to the GitHub API and private package registries. It supports multiple package managers (npm, Maven, Docker, Cargo, Helm, NuGet, pip, RubyGems, Terraform) and Git servers. Developers can now review the source code, submit bug fixes, add support for new ecosystems, and file issues. This transparency is particularly valuable for organizations with compliance requirements who need to audit their software supply chain tools.

The Dependabot Proxy is now open source with an MIT license