You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session. Dismiss alert
Today, we’re launching Claude Design, a new Anthropic Labs product that lets you collaborate with Claude to create polished visual work like designs, prototypes, slides, one-pagers, and more. Claude Design is powered by our most capable vision model, Claude Opus 4.7, and is available in research preview for Claude Pro, Max, Team, and Enterprise subscribers. We’re rolling out to users gradually thr
Agent skills are reshaping how developers work with AI coding agents. Today we’re launching gh skill, a new command in the GitHub CLI that makes it easy to discover, install, manage, and publish agent skills from GitHub repositories. What are agent skills? Agent skills are portable sets of instructions, scripts, and resources that teach AI agents how to perform specific tasks. They follow the open
Generate complex GitHub Actions YAML files using a declarative API. Gagen lets you define workflows in TypeScript with a fluent, declarative API that automatically resolves step ordering and propagates conditions. The condition propagation helps skip unnecessary setup steps and eliminates needing to repeat condition text over and over again. Additionally, gagen automatically pins dependencies in t
Isolated macOS workspaces for agents, projects, and clients Website • Documentation • Download GhostVM is a native macOS app for creating and managing macOS virtual machines on Apple Silicon using Apple's Virtualization.framework. Each VM is stored as a self-contained .GhostVM bundle that you can copy, move, or back up like any file. Perfect for: AI agent sandboxing, disposable dev environments, t
Arrange pull requests in an ordered stack and merge them all in one click. Each PR represents one focused layer of your change, reviewed independently and landed together. Navigate between PRs in your stack from the GitHub UI, check the status of every layer at a glance, and trigger a cascading rebase across the entire stack with one click.
Betterleaks is a tool for detecting secrets like passwords, API keys, and tokens in git repos, files, and whatever else you wanna throw at it via stdin. If you wanna learn more about how the detection engine works check out this blog: Regex is (almost) all you need. Betterleaks development is supported by Aikido Security ➜ ~/code(master) betterleaks git -v ○ ○ ● ○ Betterleaks v1.0.0 Finding: "expo
Run GitHub Actions on your machine. Caching in ~0 ms. Pause on failure. Fix and retry — before you commit, before you push. Agent CI is a ground-up rewrite of the GitHub Actions orchestration layer that runs entirely on your own machine. It doesn't wrap or shim the runner: it replaces the cloud API that the official GitHub Actions Runner talks to, so the same runner binary that executes your jobs
Today we’re announcing that GitButler has raised a $17M Series A led by a16z with continuing support from our lead seed investors, Fly Ventures and A Capital. I know what you’re thinking. You’re hoping that we’ll use phrases such as “we’re excited,” “this is just the beginning,” and “AI is changing everything”. While all those things are true, I’ll try to avoid them and instead make this announcem
5.0.0 (2026-04-02) 📢 Major 5.0 Release ⚠️ NodeJS 20 will be EOL by the end of April, so it's time for another Lerna-Lite major release and a Node requirement bump. Below is the list of breaking changes: removed the Conventional Changelog legacy API that allowed reading config from external file (it was deprecated years ago). It is now accepting only configuration through lerna.json file (when usi
Auto Cooldown The cooldown option is now automatically applied from the respective package manager's config: npm - min-release-age (#1632) yarn - npmMinimalAgeGate (excluding npmPreapprovedPackages) (#1643) pnpm - minimumReleaseAge (excluding minimumReleaseAgeExclude) (#1639) Why is this a breaking change? If you use any of the above configs, npm-check-updates will automatically exclude releases t
DockerfileやComposeファイルのイメージ参照に@sha256:<digest>を自動で追加するCLIツール dockerfile-pin を作りました。 GitHub: azu/dockerfile-pin なぜ作ったか trivyへのサプライチェーン攻撃などの事件を見ていると、次に狙われるのはDocker Hubかなと思ったのがきっかけです。 CIでDocker Hubへのpushをしているケースは多いので、そこに悪意あるコードが混入する事件は今後も起きるだろうと思っています。 Dockerイメージのタグ(例:node:20)はデフォルトで可変(mutable)です。同じタグ名で中身を上書きできるため、悪意ある第三者がレジストリへのアクセスを得た場合、既存タグに対して改竄されたイメージをpushできます。 Can a Docker Hub tag have its cont
リリース、障害情報などのサービスのお知らせ
最新の人気エントリーの配信
処理を実行中です
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く