GitHub Engineering

GitHub EngineeringJun 12, 2026

How we made GitHub Copilot CLI more selective about delegation

Why it matters: Optimizing agentic delegation is critical for reducing latency and failure rates in AI tools. This research shows that more delegation isn't always better; selective orchestration improves reliability and speed by minimizing handoff friction and redundant tool calls.

GitHub Copilot CLI introduced smarter subagent delegation to reduce coordination overhead and latency in agentic workflows.
The system now prioritizes direct execution by the main agent for simple tasks, reserving subagents for complex or parallelizable work.
Production A/B testing resulted in a 23% reduction in tool failures and a 5% improvement in P95 user wait time.
The team used LLM-based trajectory analysis to identify bottlenecks where subagents were performing redundant repository searches.
The orchestration policy was refined to treat subagents as tools for parallelism rather than default handlers for all tasks.
Developers can access these performance improvements by updating to Copilot CLI version 1.0.42 or later.

#mlp #dist

Read original

GitHub EngineeringJun 11, 2026

GitHub availability report: May 2026

Why it matters: This report highlights the challenges of scaling a massive monolith under AI-driven traffic growth. It provides a blueprint for reliability through infrastructure migration, service decomposition, and the implementation of automated circuit breakers to prevent cascading failures.

GitHub is migrating its monolith to Azure, now serving 40% of traffic and achieving 99% repository replication to improve elastic capacity.
The platform is decomposing its monolith into isolated domains like users and authentication to eliminate shared failure points and prevent cascading outages.
Stateless authentication tokens are being rolled out to remove per-request database lookups, significantly reducing pressure during traffic spikes.
Multiple May incidents were caused by database saturation during schema migrations and VM rate limits during GitHub Actions scale-up operations.
Remediation efforts include implementing automated circuit breakers for migrations and improving throttling logic for cloud resource allocation.

#sre #dist #data

Read original

GitHub EngineeringJun 11, 2026

Making secret scanning more trustworthy: Reducing false positives at scale

Why it matters: False positives in security tools cause alert fatigue and erode developer trust. By using LLMs to understand code context, GitHub reduces noise by over 75%, ensuring engineers spend time fixing real vulnerabilities rather than triaging non-sensitive strings.

GitHub integrated LLM-based contextual reasoning into its secret scanning pipeline to significantly reduce false positive alerts.
The system moves beyond simple pattern matching by analyzing how a potential secret is used, such as being passed to an API request or authentication header.
By focusing on 'better context' rather than 'more context,' the verification step analyzes high-signal information within a single file to maintain low latency.
The approach was developed in collaboration with Microsoft Security & AI, leveraging techniques from the Agentic Secret Finder system.
The implementation achieved a 75.76% reduction in customer-confirmed false positives, exceeding the initial target of 65%.
This hybrid model combines pattern-based detection for known formats with AI-powered verification for unstructured secrets like passwords.

#security #mlp #sre

Read original

GitHub EngineeringJun 10, 2026

Give GitHub Copilot CLI real code intelligence with language servers

Why it matters: Integrating LSP servers into GitHub Copilot CLI replaces fragile text-search heuristics with precise semantic analysis. This enables the AI agent to accurately resolve types and definitions, significantly improving its reliability and effectiveness in complex codebases.

GitHub Copilot CLI traditionally relies on text-search heuristics like grep and binary extraction, which lack semantic precision.
The Language Server Protocol (LSP) provides structured code intelligence, enabling accurate type resolution and cross-referencing.
The 'LSP Setup' skill automates the installation and configuration of language servers for 14 supported languages.
The skill follows a 7-step workflow including OS detection, package manager selection, and configuration verification.
Configuration can be scoped at the user level or repository level, with repository-level settings taking precedence.
Integrating LSPs allows the AI agent to handle complex scenarios like generics, overloads, and compiled bytecode effectively.

#mlp

Read original

GitHub EngineeringJun 9, 2026

From one-off prompts to workflows: How to use custom agents in GitHub Copilot CLI

Why it matters: Custom agents reduce friction by embedding team-specific context and standards directly into the CLI. This allows engineers to automate repetitive tasks with consistent, reviewable, and version-controlled AI workflows, ensuring high-quality outputs across the entire development lifecycle.

GitHub Copilot CLI now supports custom agents defined via Markdown files stored in the .github/agents directory.
Agent profiles use YAML frontmatter to specify roles, expertise, accessible tools, and safety guardrails for consistent execution.
Custom agents enable teams to encode specific standards, such as accessibility or security, into reusable and version-controlled workflows.
These agents provide uniform behavior across different environments, including the terminal, IDE, and GitHub pull requests.
Developers can invoke specialized agents using the /agent slash command within the Copilot CLI to perform complex, context-aware tasks.
The system allows for the automation of repetitive patterns, like log translation or code formatting, without manual prompt engineering.

#mlp #culture

Read original

GitHub EngineeringJun 8, 2026

GitHub for Beginners: Answers to some common questions

Why it matters: Understanding secure authentication is fundamental for any developer. SSH keys and PATs replace insecure password-based workflows for Git operations, while 2FA protects the account itself. Mastering these tools ensures code integrity and prevents unauthorized access to repositories.

SSH keys use public-key cryptography to authenticate Git operations, requiring a private key on your machine and a public key on GitHub.
The ssh-keygen command generates secure ED25519 key pairs, which should be managed locally using an ssh-agent to avoid repeated passphrase entry.
Personal Access Tokens (PATs) provide a secure alternative to passwords for command-line and API access, allowing for granular permission scopes.
Two-Factor Authentication (2FA) adds a critical security layer by requiring a second verification step via authenticator apps or security keys.
Properly configuring these authentication methods is essential for secure communication between local development environments and remote repositories.

#security #culture

Read original

GitHub EngineeringJun 4, 2026

GitHub Universe is back: All together now, in the agentic era

Why it matters: GitHub Universe 2026 highlights the shift toward agentic workflows, where AI agents become core collaborators in software development. For engineers, it's a chance to move from AI demos to practical, integrated workflows while networking with peers solving similar scale problems.

GitHub Universe 2026 focuses on the 'agentic era,' exploring how AI agents integrate into unified developer workflows.
The event introduces 'Ship & Tell' lightning talks for community members to showcase real-world builds and technical solutions.
Enhanced peer-to-peer learning via the Discussions Lounge allows for small-group deep dives into specific engineering challenges.
The Source expands the event's open-source footprint, facilitating direct interaction with project maintainers.
Speaker After Parties provide a dedicated space for technical follow-up questions and behind-the-scenes insights from keynote sessions.

#culture #mlp #security

Read original

GitHub EngineeringJun 2, 2026

GitHub Copilot app: The agent-native desktop experience

Why it matters: This app shifts AI from simple chat prompts to autonomous agents handling complex workflows. By providing isolated environments and visual collaboration tools, it reduces the cognitive load of managing multiple AI-driven tasks while maintaining human oversight and code quality.

GitHub launched the Copilot app, a desktop control center designed to manage multiple AI agents in parallel across connected repositories.
The app utilizes isolated git worktrees for each agent session, allowing concurrent tasks without branch conflicts or manual environment setup.
Agent Merge automates the pull request lifecycle by monitoring CI, addressing failing checks, and responding to reviewer feedback.
Canvases introduce bidirectional work surfaces where developers and agents collaborate on plans, terminal outputs, and dashboards.
Cloud and local sandboxes provide bounded environments for agents to safely execute code, inspect results, and iterate before merging.

#mlp #culture

Read original

GitHub EngineeringMay 28, 2026

Still a developer. Just outside. Our latest GitHub Shop collection is here.

Why it matters: This article highlights developer culture and the importance of mental breaks. It also showcases a unique technical implementation of lidar scanning to create an interactive and customizable frontend shopping experience for the new collection.

GitHub launched the 'ESC' collection, a summer-themed merchandise line featuring apparel and lifestyle accessories for developers.
The collection includes HTML-themed items such as the 'body' tee, 'header' hat, and 'footer' slides.
New lifestyle products include a 'Mona' octocat drink float and a can coozie modeled after the signature GitHub hoodie.
The GitHub Shop website integrated lidar-scanned backgrounds that users can interact with and personalize.
The campaign emphasizes the 'ESC' philosophy, encouraging developers to step away from their desks to find creative solutions to technical problems.

#culture #frontend

Read original

GitHub EngineeringMay 25, 2026

GitHub for Beginners: Getting started with Git and GitHub in VS Code

Why it matters: Integrating Git workflows directly into VS Code reduces context switching and boosts productivity. Understanding these built-in tools allows developers to manage version control, track changes visually, and collaborate on GitHub more efficiently without relying solely on the command line.

VS Code features built-in Git integration that allows developers to initialize repositories and manage source control without leaving the editor.
The Source Control panel uses visual indicators like 'U' for untracked and 'A' for staged files to simplify the staging and committing process.
Branch management, including creating, renaming, and switching branches, is handled efficiently through the VS Code Command Palette.
The editor gutter provides real-time visual feedback on code changes, using color-coded lines for additions, modifications, and deletions.
Built-in diff tools support both side-by-side and inline views to help developers review changes before pushing to GitHub.
Integration with GitHub Copilot enables AI-generated commit messages to streamline documentation and workflow speed.

#culture

Read original

Page 1 of 15

Prev1 2 3...15 Next