ZDNet

GitHub rolls out dependency review, vulnerability alerts for pull requests

GitHub will roll out dependency review, a security assessment for pull requests, in the coming weeks to developers. SEE: Meet the hackers who earn millions for saving the web, one bug at a time (cover ...
GovInfoSecurity

AI-Generated Code Ships Faster, But Crashes Harder

CodeRabbit analyzed 470 GitHub pull requests and found AI-generated code introduces more defects than human-written code ...
Bleeping Computer

GitHub can now alert of supply-chain bugs in new dependencies

GitHub can now block and alert you of pull requests that introduce new dependencies impacted by known supply chain vulnerabilities. This is achieved by adding the new Dependency Review GitHub Action ...
InfoWorld

GitHub introduces code review controls

New controls in the popular code-sharing site are designed to deal with ‘drive-by‘ pull request approvals and ‘spammy’ change requests. GitHub has added code review restrictions and improved mobile ...
InfoWorld

AI-assisted coding creates more problems – report

Citing issues with logic, correctness, and security, a new report recommends specific guardrails for AI-generated code.
SD Times

IntelliJ IDEA 2020.2 adds ability to review and merge GitHub pull requests

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...