You can control which users can use GitHub Codespaces in your organization's private repositories.| GitHub Docs
Create a codespace to start developing in a secure, configurable, and dedicated development environment that works how and where you want it to.| GitHub Docs
Find information about setting up and using self-hosted runners.| GitHub Docs
The permissions and visibility of forks depend on whether the upstream repository is public or private, and whether it is owned by an organization.| GitHub Docs
You can connect to GitHub using the Secure Shell Protocol (SSH), which provides a secure channel over an unsecured network.| GitHub Docs
You can use the CodeQL CLI to upload CodeQL analysis results to GitHub.| GitHub Docs
To get started with the CodeQL CLI, you need to download and set up the CLI so that it can access the tools and libraries required to create and analyze databases.| GitHub Docs
You can build a CodeQL database containing the data needed to analyze your code.| GitHub Docs
You can run queries against a CodeQL database extracted from a codebase.| GitHub Docs
You can use the CodeQL CLI to run CodeQL processes locally on software projects or to generate code scanning results for upload to GitHub.| GitHub Docs
You can upload SARIF files generated outside GitHub and see code scanning alerts from third-party tools in your repository.| GitHub Docs
GitHub Apps let you build integrations to automate processes and extend GitHub's functionality.| GitHub Docs
Use the REST API to manage rulesets for repositories. Rulesets control how people can interact with selected branches and tags in a repository.| GitHub Docs
Rulesets help you to control how people can interact with branches and tags in a repository.| GitHub Docs
To display results from a third-party static analysis tool in your repository on GitHub, you'll need your results stored in a SARIF file that supports a specific subset of the SARIF 2.1.0 JSON schema for code scanning. If you use the default CodeQL static analysis engine, then your results will display in your repository on GitHub automatically.| GitHub Docs
Use the REST API to retrieve and update code scanning alerts from a repository.| GitHub Docs
Use the REST API to retrieve and update code scanning alerts from a repository.| GitHub Docs
When code scanning identifies a problem in a pull request, you can review the highlighted code and resolve the alert.| GitHub Docs
Learn how GitHub uses AI to suggest potential fixes for code scanning alerts and find out how best to mitigate limitations in the AI suggestions.| GitHub Docs
You can perform code scanning externally and then display the results in GitHub, or configure webhooks that listen to code scanning activity in your repository.| GitHub Docs
Use the REST API to get meta information about GitHub, including the IP addresses of GitHub services.| GitHub Docs
Use the REST API to interact with GitHub Actions for an organization or repository.| GitHub Docs
You can configure the Actions Runner Controller to run Dependabot on self-hosted runners.| GitHub Docs
You can configure an Azure Virtual Network (VNET) to run Dependabot on GitHub-hosted runners.| GitHub Docs
Reference information for calculating the cost of using different GitHub-hosted runners.| GitHub Docs
To support debugging of Dependabot pull requests, GitHub provides logs of all Dependabot jobs.| GitHub Docs
Learn how to tailor your Dependabot pull requests to better suit your own internal workflows.| GitHub Docs
You can use GitHub presets, which are rules curated by GitHub, to auto-dismiss low impact development alerts for npm dependencies.| GitHub Docs
You can filter to see which alerts have been auto-dismissed by a rule, and you can reopen dismissed alerts.| GitHub Docs
You can create your own auto-triage rules to control which alerts are dismissed or snoozed, and which alerts you want Dependabot to open pull requests for.| GitHub Docs
If you upload an image or video to GitHub, the URL of the image or video will be modified so your information is not trackable.| GitHub Docs
There are several methods you can use within your project to quickly make changes to multiple items.| GitHub Docs
You can configure your project's built-in workflows to automatically add items from repositories that match a filter.| GitHub Docs
You can create templates or set projects as templates in your organization, allowing other people to select your template as the base for projects they create.| GitHub Docs
You can add your project to a repository to make it accessible from that repository.| GitHub Docs
Learn how to troubleshoot common authentication issues when you clone, push to, or pull from a repository in a codespace.| GitHub Docs
Overview of the GitHub Codespaces security architecture, with guidelines to help you maintain security and minimize the risk of attack.| GitHub Docs
You can permit your prebuild to access other GitHub repositories so that it can be built successfully.| GitHub Docs
Here's a short tutorial on using git rebase on the command line.| GitHub Docs
Use a branch to isolate development work without affecting other branches in the repository. Each repository has one default branch, and can have multiple other branches. You can merge a branch into another branch using a pull request.| GitHub Docs
You can import a repository from Subversion by converting the repository to Git, then pushing the Git repository to GitHub.| GitHub Docs
You can import a repository from Mercurial by converting the repository to Git, then pushing the Git repository to GitHub.| GitHub Docs
Learn how to work around the 2 GB push limit.| GitHub Docs
You can securely access your account's resources by authenticating to GitHub, using different credentials depending on where you authenticate.| GitHub Docs
Use the REST API to interact with the cache for repositories in GitHub Actions.| GitHub Docs
Compare available AI models in Copilot Chat and choose the best model for your task.| GitHub Docs
Merge a pull request into the upstream branch when work is completed. Anyone with push access to the repository can complete the merge.| GitHub Docs
You can resolve merge conflicts using the command line and a text editor.| GitHub Docs
If your changes have merge conflicts with the base branch, you must address the merge conflicts before you can merge your pull request's changes.| GitHub Docs
You can add rulesets to a repository to control how people can interact with specific branches and tags.| GitHub Docs
Learn which rules you can add to a ruleset to protect specific branches and tags in a repository.| GitHub Docs
Get started, troubleshoot, and make the most of GitHub. Documentation for new users, developers, administrators, and all of GitHub's products.| GitHub Docs
Issues can be created in a variety of ways, so you can choose the most convenient method for your workflow.| GitHub Docs
With 2FA enabled, you'll be asked to provide your 2FA authentication code, as well as your password, when you sign in to GitHub.| GitHub Docs
When you sign in for the first time from a new or unrecognized device without two-factor authentication enabled, GitHub may ask for additional verification to confirm that it is you.| GitHub Docs
You can use a passkey to sign in safely and easily to GitHub in your browser, without requiring a password and two-factor authentication. You can also sign in using a passkey on a nearby device.| GitHub Docs
You can verify your ownership of domains with GitHub to confirm your organization's identity.| GitHub Docs
Jekyll is a static site generator with built-in support for GitHub Pages.| GitHub Docs
You can define different input types, validations, default assignees, and default labels for your issue forms.| GitHub Docs
You can use GitHub's form schema to configure forms for supported features.| GitHub Docs
GitHub supports rendering and diffing in a number of non-code file formats.| GitHub Docs
You can store sensitive information, like tokens, that you want to access in your codespaces via environment variables.| GitHub Docs
You can allow GitHub to automatically use GPG to sign commits you make in your codespaces, so other people can be confident that the changes come from a trusted source.| GitHub Docs
After making changes to a file in your codespace you can quickly commit the changes and push your update to the remote repository.| GitHub Docs
You can change the type of machine that's running your codespace, so that you're using resources appropriate for the work you're doing.| GitHub Docs
Learn how to develop in a GitHub Codespaces environment, and maintain your data throughout the entire codespace lifecycle.| GitHub Docs
Learn about the costs for using GitHub Codespaces, and the monthly usage quotas included with GitHub personal accounts.| GitHub Docs
If you're cloning GitHub repositories using HTTPS, we recommend you use GitHub CLI or Git Credential Manager (GCM) to remember your credentials.| GitHub Docs
GitHub's collaborative approach to development depends on publishing commits from your local repository to GitHub for other people to view, fetch, and update.| GitHub Docs
Use the REST API to get meta information about GitHub, including the IP addresses of GitHub services.| GitHub Docs
This article provides troubleshooting information for issues you may encounter when using Dependabot with GitHub Actions.| GitHub Docs
Examples of how you can configure Dependabot to only access private registries by removing calls to public registries.| GitHub Docs
You can configure self-hosted runners that Dependabot uses to access your private registries and internal network resources.| GitHub Docs
The mutation type defines GraphQL operations that change data on the server.| GitHub Docs
You can get global node IDs of objects via the REST API and use them in GraphQL operations.| GitHub Docs
You can analyze your code with the CodeQL CLI or another tool in a third-party continuous integration system and upload the results to GitHub. The resulting code scanning alerts are shown alongside any alerts generated within GitHub.| GitHub Docs
You can use rulesets to set code scanning merge protection for pull requests.| GitHub Docs
From the security view, you can view, fix, or dismiss alerts for potential vulnerabilities or errors in your project's code.| GitHub Docs
Examples of how you can use GitHub Actions to automate common Dependabot related tasks.| GitHub Docs
GitHub automatically runs the jobs that generate Dependabot pull requests on GitHub Actions if you have GitHub Actions enabled for the repository. When Dependabot is enabled, these jobs will run by bypassing Actions policy checks and disablement at the repository or organization level.| GitHub Docs
Sometimes Dependabot is unable to raise a pull request to update your dependencies. You can review the error and unblock Dependabot.| GitHub Docs
Learn how to customize Dependabot pull requests for security updates to align with your project's security priorities and workflows.| GitHub Docs
Find and fix vulnerable dependencies you rely on with Dependabot.| GitHub Docs
Dependabot auto-triage rules are a powerful tool to help you better manage your security alerts at scale. GitHub presets are rules curated by GitHub that you can use to filter out a substantial amount of false positives. Custom auto-triage rules provide control over which alerts are ignored, snoozed, or trigger a Dependabot security update to resolve the alert.| GitHub Docs
Enable Dependabot alerts to be generated when a new vulnerable dependency is found in one of your repositories.| GitHub Docs
You can create independent or nested teams to manage repository permissions and mentions for groups of people.| GitHub Docs
Create diagrams to convey information through charts and graphs| GitHub Docs
Share samples of code with fenced code blocks and enabling syntax highlighting.| GitHub Docs
You can create two kinds of gists: public and secret. Create a public gist if you're ready to share your ideas with the world or a secret gist if you're not.| GitHub Docs
Learn how to add pull requests, issues, and draft issues to your projects individually or in bulk.| GitHub Docs
You can use GitHub Actions to automate your projects.| GitHub Docs
You can manage the repositories that GitHub Codespaces can access.| GitHub Docs
Optimize how you receive notifications about Dependabot alerts.| GitHub Docs
GitHub limits the size of files you can track in regular Git repositories. Learn how to track or remove files that are beyond the limit.| GitHub Docs
If your code is stored locally on your computer and is tracked by Git or not tracked by any version control system (VCS), you can import the code to GitHub using GitHub CLI or Git commands.| GitHub Docs
A fork is a new repository that shares code and visibility settings with the original “upstream” repository.| GitHub Docs