+44 0330 223 3428
Call Us
+44 0330 223 3428

WPTavern: GitHub Launches Security Alerts for JavaScript and Ruby Projects, Python Support Coming in 2018

WPTavern: GitHub Launches Security Alerts for JavaScript and Ruby Projects, Python Support Coming in 2018

Last month GitHub launched its Dependency Graph feature that tracks a repository’s dependencies and sub-dependencies under the Insights tab. This week the company rolled out an expansion of the feature and will now identify known vulnerabilities and send notifications with suggested fixes from the GitHub community.

Dependency graphs and security alerts are automatically enabled for public repositories, provided the repository owner has defined the dependencies in one of the supported manifest file types, such as package.json or Gemfile. (Private repo owners have to opt in.) The vulnerability alerts are not public – they will only be shown to those who have been granted access to the vulnerability alerts.

GitHub uses data from the National Vulnerability Database to alert repository owners about publicly disclosed vulnerabilities that have CVE IDs. Vulnerability detection is currently limited to JavaScript and Ruby projects but Python support is next on the roadmap for 2018. PHP, which is a bet less widely used in projects on GitHub, is likely further down the list.



Source: WordPress

Related Post
WPTavern: WordPress.com Secures $2.4 Million in Funding from Google and Partners to Build a Publishing Platform for News Organizations

WPTavern: WordPress.com Secures .4 Million in Funding from Google and Partners to Build a Publishing Platform for News Organizations WordPress.com has announced plans to create a new, open source publishing platform that caters to small and medium-sized news organizations. The Google News Initiative has contributed $1.2 million towards the development of “Newspack” on top of […]

Read more
Matt: My TED Video on the Future of Work

Matt: My TED Video on the Future of Work I was thrilled to participate in TED’s new video series, The Way We Work, and not surprisingly I made the case that distributed work is where everything is headed. &version; Why Working from Home Is Better for Business This company is so dedicated to remote working […]

Read more
WPTavern: WooCommerce Blocks is Now a Feature Plugin, Version 1.3.0 Introduces 6 New Blocks

WPTavern: WooCommerce Blocks is Now a Feature Plugin, Version 1.3.0 Introduces 6 New Blocks WooCommerce Blocks 1.3.0 was released yesterday with six new blocks. Previously, the plugin allowed users to display a grid of products by category. The new version introduces a Featured Product Block with design options for customizing nearly everything about the display, […]

Read more