Browsing Tag
GitHub Advanced Security
2 posts
GitHub Advanced Security, code scanning, dependency security, secret scanning, and developer security workflows.
GitHub Code Quality Goes Paid July 20: What Teams Should Audit Now
GitHub Code Quality becomes a paid product on July 20, adding a $10-per-active-committer license, GitHub AI Credits for AI-powered checks, and GitHub Actions minutes for CodeQL scans. Teams using the free preview should audit enabled repositories, active committers, Actions usage, AI review behavior, and merge-blocking rules before billing starts.
Microsoft MDASH Moves AI Bug Hunting Into Real Security Workflows
Microsoft says its MDASH agentic security system is now being used across Windows, Azure, and identity workflows, with new findings in Hyper-V, HTTP.sys, the Windows kernel, and Active Directory. The update shows AI vulnerability discovery moving from benchmark claims toward real engineering pipelines, while proof generation remains the hard part.