GitHub Security

@GitHubSecurity

GitHub Security Team

Everywhere software is built
github.com/security
Joined July 2013
8 Photos and videos Photos and videos

Tweets

You blocked @GitHubSecurity

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @GitHubSecurity

  1. Mar 18

    Seeking security champion to support GitHub’s engineering teams in our journey to be our own best customers of CodeQL and Dependabot

    3 retweets 3 likes
    Undo
  2. Mar 17

    Want to secure the platform of the largest open source community in the world? We'd love to hear from you

    2 retweets 1 like
    Undo
  3. Mar 17

    Are you excited by large scale security data to help protect the largest open source community? Apply now

    1 retweet 1 like
    Undo
  4. Mar 16

    Oh no. Earworm of the week!

    pronouncing "boolean" like "jolene" is my toxic developer trait
    4 likes
    Undo
  5. Retweeted
    Mar 15

    We are hiring a Senior Security Researcher! Are you excited to help secure open source software? Let's talk!

    1 reply 19 retweets 54 likes
    Undo
  6. Retweeted
    Mar 15

    I'll come out of twitter retirement to promote a great spot on a fantastic team, I spent 2 years on the security lab team (moved to prodsec) and 10/10 would grep for memcpy again:

    2 replies 23 retweets 100 likes
    Undo
  7. Mar 15

    As of today we've stopped accepting DSA keys. RSA keys uploaded after Nov 2, 2021 will work only with SHA-2 signatures. The deprecated MACs, ciphers, and unencrypted Git protocol are permanently disabled.

    8 retweets 14 likes
    Undo
  8. Retweeted
    Mar 4

    All npm accounts are now enrolled in login verification

    6 retweets 20 likes
    Undo
  9. Retweeted
    Mar 4

    Security overview for enterprise in beta

    1 retweet 3 likes
    Undo
  10. Mar 11

    This change reduces the likelihood of Apps being used in phishing attacks against GitHub users.

    Opt in needed to keep OAuth Device Authorization Flow working
    6 likes
    Undo
  11. Mar 3

    GitHub Security’s Bug Bounty team rocked the short month of February: ✅ Closed 159 bounty reports 💰 Awarded $72,087 worth of bounties 👫101 hackers participated in our program

    1 reply 20 likes
    Undo
  12. Retweeted
    Feb 22

    Sunset Notice: Deprecated Teams API Endpoints

    6 retweets 10 likes
    Undo
  13. Retweeted
    Feb 22

    GitHub Advisory Database now accepts community contributions! Provide additional information and context to further the community’s understanding and awareness of security advisories via community contributions.

    5 replies 41 retweets 160 likes
    Undo
  14. Retweeted
    Feb 17

    Looking to raise the security bar on your repos? Check out our experimental new ML-generated security alerts.

    3 replies 33 retweets 165 likes
    Undo
  15. Retweeted
    Feb 16

    Secret scanning now supports archived repositories

    4 retweets 8 likes
    Undo
  16. Retweeted
    Feb 11

    The success of Open Source Security starts with better communication and collaboration between sec. researchers and developers. Here are 3 ways to improve this collaboration, out of 's research:

    To mitigate threats and software supply chain vulnerabilities, partnership between researchers & developers is vital. That’s why I’m investigating interactions between these communities for improved communication & collabs! My latest for :
    6 retweets 21 likes
    Undo
  17. Retweeted
    Feb 8

    View Dependabot alerts across an organization

    12 retweets 41 likes
    Undo
  18. Retweeted
    Feb 9

    Dependabot alerts: persisted after fix, now one per advisory

    2 retweets 13 likes
    Undo
  19. Feb 9

    A strong partnership between open source developers and security researchers is tantamount to securing open source software. GitHub Security Lab, through guidance like this, does an amazing job fostering collaboration between these communities.

    Make the best out of your next coordinated vulnerability disclosure! Check out our comprehensive guide for vulnerability reporters.
    1 retweet 11 likes
    Undo
  20. Feb 4

    Calling Cloud Security, Security Architecture, and Security Engineering folks, we are recruiting for several positions in our Security Operations team. Interested?

    1 reply 4 retweets 7 likes
    Undo

@GitHubSecurity hasn't Tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·