Did you know you can combine your application security data from GitHub Advanced Security in your SIEM? With our new integrations with , , , and , you can!
Follow
Click to Follow GitHubSecurity
GitHub Security
@GitHubSecurity
GitHub's Security Team.
GitHub Security’s Tweets
Interested in @GitHubSecurity's Tweets?
Turn on account notifications to keep up with all new content. Opting out is easy, so give it a try.
Reverted recent change that caused some pull requests to be incorrectly marked as merged
1
6
New enterprise policies for code security
3
9
GitHub Actions: Deprecating save-state and set-output commands
3
15
33
Did you know?!?! You can subscribe to GitHub's subprocessor list and get automated updates: github.com/privacy/subpro #GitHubPrivacy
8
Enterprise owners will be able to query their audit logs for activity associated with specific authentication tokens providing for detection and traceability.
Quote Tweet
Display Authentication Token Data in your Enterprise Audit Log – Beta github.blog/changelog/2022
5
Audit Log Streaming to Datadog is generally available github.blog/changelog/2022
1
5
GitHub’s supply chain features now support Dart
4
11
O, I-C-D logs with OIDC! GitHub Enterprise Cloud customers can now configure audit log streaming to AWS S3 with OpenID Connect (OIDC)
Quote Tweet
Stream audit log to AWS S3 with OpenID Connect (OIDC) github.blog/changelog/2022
1
4
GitHub's Bug Bounty had a strong end to summer! 😎Here are our September bug bounty stats:
👫 110 hackers participated in our program
✅ Closed 246 reports
💰 Awarded $90,519 in bounties
2
8
Secret scanning alerts now have a timeline and users can add a comment when resolving github.blog/changelog/2022
2
5
We would also like to point out that our very own PianoBarCon ran by resulted in a $215 donation jar to as well.
Additionally, via the Wellness Village, ’s sponsorship to it resulted in a $500 donation to .
2
3
10
Show this thread
True or false? CVEs are bad for the reputation of the software and its vendor or maintainer.
Our very own debunks these 5⃣ myths about CVEs in
4
22
37
We are planning to migrate all actions to run on Node16 by Summer 2023, as Node 12 is out of support. We are adding a warning into workflows running on Node 12 starting on September 27th. We will monitor the progress of the migration before we set a final date for deprecation.
Quote Tweet
GitHub Actions: All Actions will begin running on Node16 instead of Node12 github.blog/changelog/2022
4
14
Dependabot security updates removes unneeded transitive dependencies
10
24
GitHub has learned of a phishing campaign targeting GitHub users by impersonating CircleCI to harvest user credentials and two-factor codes. Read more about our response and how to protect your accounts from phishing attacks.
38
98
140
New Audit Log events and context make us happy!
GIF
read image description
ALT
Quote Tweet
New Audit Log events and event context github.blog/changelog/2022
6
7
Dependabot unlocks transitive dependencies for npm projects
4
22
Hot dog, hot dog, hot diggety dog! Public Beta for GitHub Audit Log Streaming to Datadog.
Quote Tweet
Audit Log Streaming to Datadog available as Public Beta github.blog/changelog/2022
1
13
Update and configure code security enablement settings via the organization REST API
1
3
7
"Breathe the sweetness that hovers in August." (Denise Levertov) GitHub's August bug bounty stats:
👫109 hackers participated in our program 👏
✅Closed 197 reports 💥
💰Awarded $207,238 in bounties 😻😎
7
Aaaaaand we’re back! 🎉 #GitHubUniverse 2022 👇
🗓 Nov. 9-10
✌️ In-person and virtual
🎨 Yerba Buena Center for the Arts in San Francisco
🐦 20% off early bird tickets!
👉 github.co/3edd84R
0:20
19.6K views
76
151
413
Blue Team Con has published its post-event survey to all attendees. Please look for the email.
Please provide feedback and commentary. You are heard and listened to. You make the con.
Every Advisory Board member sees and reviews your feedback for areas where we can improve.
4
22
A big thank you to all of the board members from last year's, this year's, and NEXT year's team. We appreciate the iterations and improvements from last year to this one and are VERY excited for the announced growth and inclusion opportunities coming next year!
1
2
11
5 more minutes to get your coloring contest tweets to and at
4
17
Still 30 minutes left if you're to submit your coloring to for the chance to win a GitHubSecurity YubiKey.
1
4
16
Yasss!
Quote Tweet
I did some coloring in the @HackerHealth & @GitHubSecurity Wellness Village at @BlueTeamCon
5
4
9
58
Quote Tweet
5
Happy Sunday! We have just about 3.5 hours (2pm central) left to submit your and coloring page or word search for the chance to be picked for a GitHub Yubikey .
Quote Tweet
Hello @BlueTeamCon 
come say hello I’m hanging at the @GitHubSecurity booth by @HackersHealth Village!
come say hello I’m hanging at the @GitHubSecurity booth by @HackersHealth Village!
0:09
807 views
1
8
Hello 🎉🎉🎉 come say hello I’m hanging at the booth by Village!
0:09
807 views
3
18
Come see the village sponsored by this weekend at !
We have a schedule of talks and yoga listed on both our website and the cons
#blueteamcon
Quote Tweet
Spoiler alert
Preparations for GitHubSecurity @BlueTeamCon underway! Looking forward to seeing you in Chicago this weekend!
read image description
ALT
7
21
Looking forward to seeing all the Blue Teamers in Chicago soon!
read image description
ALT
1
7
Blue Team Con can earn you CPE's just like any other activity.
For most organizations, 1 hour of content is 1 CPE.
At Blue Team Con 2022, we have over 17 hours of content which equates to a 17 CPE potential if you can somehow be in two rooms at once.
8
20
Excited to be able to sponsor many of these awesome villages that add dimension and inclusion, and help folks find more places we belong in the security community.
Quote Tweet
Have you seen our Blue Team Con 2022 Villages?
- Career Village
- Last Minute CTF Room
- Childcare Village
- Hak4Kidz Village
- Unconference
- Wellness Village
- Hands-On Village
Make sure to stop by and see the ones you are allowed to!
More at: blueteamcon.com/2022/villages/
5