Best of GitHub BlogApril 2025

  1. 1
    Article
    Avatar of ghblogGitHub Blog·1y

    From MCP to multi-agents: The top 10 open source AI projects on GitHub right now and why they matter

    Discover the top 10 open source AI projects on GitHub chosen by a panel of experts, shedding light on AI trends such as integration via MCP, multi-agent collaboration, and advancements in speech generation. These projects showcase the evolution of open source participation, with a focus on standardized integration patterns, collaborative agent frameworks, and licensing. The list reflects the dynamic landscape of AI in open source and offers opportunities for developers to engage and contribute.

  2. 2
    Article
    Avatar of ghblogGitHub Blog·1y

    Localhost dangers: CORS and DNS rebinding

    CORS misconfigurations can create serious security vulnerabilities by allowing unauthorized access to web resources. DNS rebinding is another attack that exploits server configurations to access local network resources. Understanding CORS mechanics and carefully implementing policies can prevent these issues. Common mistakes include improper domain validation and overly broad rules. Mitigations include using exact domain matches and validating host headers.

  3. 3
    Article
    Avatar of ghblogGitHub Blog·1y

    From prompt to production: Building a landing page with Copilot agent mode

    The post provides a step-by-step guide on how to build a developer-focused landing page using GitHub Copilot agent mode and Claude 3.5 Sonnet. It highlights the efficiency and capabilities of Copilot's agent mode in integrating design and code seamlessly while significantly reducing development time. The use of natural language prompts, custom instructions for context, and iterative development with Copilot are emphasized for enhancing productivity in modern web development.

  4. 4
    Article
    Avatar of ghblogGitHub Blog·1y

    GitHub for Beginners: Building a REST API with Copilot

    This post is part of a series on using GitHub Copilot and demonstrates building a REST API for Planventure, a travel itinerary builder. It guides users through setting up a Flask environment, using Copilot to generate code for database models, authentication, and CRUD operations for trips. The post includes instructions for testing and debugging with tools like Bruno, and highlights using Copilot for generating code changes and documentation.

See all GitHub Blog archives