Two months after Rapid7 discovered the hole in the Git service, the project maintainer has yet to patch the bug.

Microsoft has hit back after a disgruntled security researcher published proof of concept hacks for six zero-day vulnerabilities in its products without sharing details with Redmond prior to release, ...

Ubiquiti released a new security bulletin detailing fixes for six security issues, including one rated 9.1 (critical) and one scoring a perfect 10.0 on the CVE risk scale. The vulnerabilities range ...

Threat actors earlier today published more than 600 malicious packages to the Node Package Manager (npm) index as part of a ...

GitLab's CEO told employees the restructuring means layoffs, flatter structure, smaller teams, and AI agents everywhere.

GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks that has impacted hundreds of organizations.

A critical argument injection in an open-source Git service could lead to remote code execution and supply chain compromise.

GitLab is undergoing a significant restructuring, including layoffs, to adapt to the 'agentic era' of software engineering. CEO Bill Staples announced plans to flatten the organization, empower ...

Ever since they became a standard offering on a free tier, private GitHub repositories have become popular with developers. However, many developers become ...

GitHub's user base has swelled under Microsoft's ownership, but the software repository has fallen behind newer rivals in the ...

GitHub has said it found about 3,800 internal repositories accessed in the breach and stressed that these contained its own code rather than customer projects. The ...

Open-source repositories are collapsing under the strain of 10 trillion downloads annually. All the major repositories are joining together to tackle this problem. While a lack of funds is a major ...