GutHub has announced 4 products to help all software communities work together:
- Codespaces: A complete dev environment within GitHub that lets you contribute immediately
- GitHub Discussions: A new way for software communities to collaborate outside the codebase
- Code scanning and secret scanning: Helping communities on GitHub produce & consume more secure code
- GitHub Private Instances: Collaboration even for stringently regulated customers
One of these features, ‘Code scanning’ is now available as a GitHub-native experience. With code scanning enabled, every `git push` is scanned for new potential security vulnerabilities, & results are displayed directly in your pull request.
GitHub said code scanning uses the world’s most advanced semantic analysis engine, CodeQL, which has an unmatched record finding real vulnerabilities.
For more, click here.
Image credit: GitHub