Microsoft adds new code modernization features to GitHub Copilot and Azure Migrate

Microsoft says GitHub Copilot can address breaking changes in not only a company’s applications but also their dependencies.
Visual Studio Magazine

Copilot Does Azure-Focused .NET App Modernizations in Visual Studio

GitHub Copilot app modernization is now generally available in Visual Studio, providing AI-powered upgrades and Azure ...
Bleeping Computer

GitHub can now alert of supply-chain bugs in new dependencies

GitHub can now block and alert you of pull requests that introduce new dependencies impacted by known supply chain vulnerabilities. This is achieved by adding the new Dependency Review GitHub Action ...
TechRepublic

GitHub offers secret scanning for free

The open source software development service has made it easier for developers using its public repositories to keep coding secrets and tokens close to the chest. Image: prima91/Adobe Stock ...

CISA urges dependency checks following Shai-Hulud compromise

Security teams are urged to review their software environments after a major supply chain attack on the NPM ecosystem.
Visual Studio Magazine

GitHub Desktop 3.0 Enhances Pull Request Integration

Microsoft-owned GitHub announced GitHub Desktop 3.0, noting that it provides better integration for developer pull requests (PRs). GitHub Desktop, for the unfamiliar, is described as an open source ...