GitHub Engineering

Why it matters: Mastering GitHub's native project management tools allows engineers to streamline collaboration and maintain task visibility without leaving their version control environment. This reduces context switching and ensures that technical debt and new features are tracked systematically.

GitHub Issues serve as the primary unit for tracking tasks, bugs, and ideas, allowing for detailed descriptions and cross-linking using the # symbol.
Issues can be categorized and managed using metadata such as assignees, labels, milestones, and specific issue types.
GitHub Projects provide a visual dashboard, such as Kanban boards, to group and track issues across a broader team workflow.
Project boards are highly customizable, offering multiple views, custom fields, and granular access control for collaborators.
The Insights feature within Projects enables teams to generate and customize charts to visualize progress and project health.
Workflows in GitHub Projects allow for the automation of task movements and status updates to streamline project management.

#culture

Read original

GitHub EngineeringFeb 27, 2026

From idea to pull request: A practical guide to building with GitHub Copilot CLI

Why it matters: Copilot CLI bridges the gap between terminal workflows and AI assistance. It keeps engineers in their flow state by handling scaffolding, debugging, and mechanical changes without context switching, while ensuring safety through mandatory manual approval of all suggested actions.

GitHub Copilot CLI translates natural language intent into reviewable diffs and commands directly in the terminal.
The /plan mode allows developers to outline architectural steps and project structures before any code is generated.
It automates project scaffolding and boilerplate generation while requiring explicit user approval for all file changes.
Engineers can debug in real-time by asking the CLI to explain test failures and suggest fixes based on terminal output.
The tool handles tedious, repo-wide mechanical changes like refactoring or updating tests with high speed and visibility.
A clear handoff point exists where developers move to an IDE for fine-grained design decisions and API refinement.

#mlp #culture

Read original

GitHub EngineeringFeb 26, 2026

What’s new with GitHub Copilot coding agent

Why it matters: These updates transform AI from a simple autocomplete tool into a sophisticated background agent that handles end-to-end tasks. By automating code review and security checks, it reduces manual toil and ensures higher quality PRs with significantly less human intervention.

GitHub Copilot coding agent now allows users to select specific AI models for tasks, choosing faster models for routine work or more robust ones for complex refactoring.
The agent performs automated self-reviews to catch logic errors and improve code style before submitting a pull request.
Integrated security scanning checks for vulnerabilities, secrets, and dependency issues for free within the agent workflow.
Custom agents can be defined in .github/agents/ to enforce team-specific processes, such as mandatory benchmarking.
Seamless handoff between cloud sessions and the local CLI allows developers to move work between environments without losing context.

#mlp #security

Read original

GitHub EngineeringFeb 24, 2026

Multi-agent workflows often fail. Here’s how to engineer ones that don’t.

Why it matters: As LLMs move from chat to autonomous workflows, reliability depends on rigorous engineering. Applying distributed systems principles like typed contracts and schema enforcement prevents the subtle, cascading failures common in complex multi-agent orchestrations.

Treat multi-agent workflows as distributed systems rather than chat interfaces to manage shared state and non-deterministic behavior.
Implement typed schemas for all inter-agent communication to turn vague debugging into clear contract violation failures.
Use action schemas to constrain agent outputs to a strict, predefined set of valid operations like 'assign' or 'close'.
Adopt the Model Context Protocol (MCP) to enforce input and output validation for tools before execution occurs.
Design for failure by validating every agent boundary, logging intermediate states, and building in retry mechanisms.
Constrain agent actions and interfaces before adding more agents to a workflow to reduce the failure surface.

#dist #mlp

Read original

GitHub EngineeringFeb 19, 2026

How AI is reshaping developer choice (and Octoverse data proves it)

Why it matters: AI is fundamentally reshaping the tech stack by favoring languages like TypeScript that provide better constraints for LLMs. Octoverse 2025 data shows that AI reduces the friction of complex syntax, making reliability and utility the primary drivers of developer choice over ease of use.

TypeScript has officially surpassed Python and JavaScript to become the most-used language on GitHub as of 2025.
AI tools like Copilot are reducing the 'complexity penalty' of languages, leading to a 66% year-over-year growth for TypeScript.
Strongly typed languages provide better constraints for LLMs, resulting in more reliable and contextually accurate code generation.
Shell scripting in AI-generated projects increased by 206%, suggesting AI is effectively handling high-friction boilerplate tasks.
Over 1.1 million public repositories now integrate LLM SDKs, marking a shift from experimental to mainstream AI adoption.
Developers are advised to establish architectural patterns manually before using AI, as LLMs amplify existing code quality patterns.

#culture #frontend #mlp

Read original

GitHub EngineeringFeb 18, 2026

What to expect for open source in 2026

Why it matters: As open source scales globally and AI-generated contributions surge, engineers must shift from ad-hoc management to formal governance and automated triaging. This shift is vital for building sustainable projects that can handle increased volume without burning out maintainers.

Open source is becoming increasingly global, with significant developer growth in India, Brazil, and Indonesia requiring asynchronous communication strategies.
AI has lowered the entry barrier for new developers but introduced 'AI slop,' leading to a high volume of low-quality pull requests and issues.
Maintainers are adopting AI defensively to automate triage, label issues, and detect duplicates to manage the influx of contributions.
Sustainable projects must implement formal governance models and clear advancement paths from contributor to maintainer to prevent burnout.
While AI-focused projects represent 60% of top growth, established tools like VS Code continue to thrive by supporting broad international communities.

#culture #mlp #dist

Read original

GitHub EngineeringFeb 17, 2026

Securing the AI software supply chain: Security results across 67 open source projects

Why it matters: Securing the open-source supply chain is critical as a single vulnerability can impact thousands of downstream systems. This initiative provides the resources and training necessary to harden the libraries and tools that form the bedrock of modern AI and cloud infrastructure.

The GitHub Secure Open Source Fund provides $10,000 in non-dilutive funding and expert training to maintainers of critical open source infrastructure.
Session 3 involved 67 projects, resulting in 99% of participants enabling core GitHub security features like CodeQL and secret scanning.
The program has collectively issued 191 new CVEs and resolved over 600 leaked secrets across 138 projects to date.
Training focuses on threat modeling, secure coding, and AI-specific security to harden the foundations of modern software stacks.
Participating projects receive Azure credits and ongoing access to the GitHub Security Lab for 12 months to ensure long-term security maintenance.

#security #culture

Read original

GitHub EngineeringFeb 13, 2026

Automate repository tasks with GitHub Agentic Workflows

Why it matters: GitHub Agentic Workflows lower the barrier for complex repository automation by replacing rigid YAML with intent-driven Markdown. This enables 'Continuous AI,' allowing teams to automate cognitive tasks like issue triage and CI debugging while maintaining strict security and audit guardrails.

GitHub Agentic Workflows allow developers to automate repository tasks using plain Markdown instructions executed by AI coding agents.
The workflows run within GitHub Actions, leveraging existing infrastructure for permissions, sandboxing, and auditing.
Supported agent engines include Copilot CLI, Claude Code, and OpenAI Codex, allowing for flexible execution of non-deterministic tasks.
Key use cases include automated issue triaging, continuous documentation updates, and proactive investigation of CI failures with proposed fixes.
The initiative introduces 'Continuous AI,' a paradigm designed to augment traditional CI/CD with intent-driven automation for cognitive chores.

#mlp #culture #sre

Read original

GitHub EngineeringFeb 12, 2026

Welcome to the Eternal September of open source. Here’s what we plan to do for maintainers.

Why it matters: As AI and low-friction tools flood open source with low-quality contributions, maintainer burnout is rising. GitHub's new features aim to restore balance by giving maintainers better tools to filter noise, manage PR volume, and protect the sustainability of the open-source ecosystem.

Open source is facing an 'Eternal September' where the volume of low-quality contributions, often AI-generated, exceeds maintainer review capacity.
The cost to create pull requests and security reports has dropped significantly, while the cost to review them remains a high manual burden.
GitHub is introducing features like pinned comments and noise-reduction banners to minimize 'low-value' interactions like '+1' comments.
Performance improvements to PR diffs and issue navigation aim to reduce the time maintainers spend on administrative triage.
New repo-level controls will allow maintainers to limit PR creation to collaborators or delete spam PRs directly from the UI.
The industry is seeing a shift toward 'invitation-only' contribution models to restore trust and ensure high-quality engagement.

#culture #security

Read original

GitHub EngineeringFeb 11, 2026

GitHub availability report: January 2026

Why it matters: This report highlights the risks of major infrastructure upgrades and model configuration changes in high-scale environments. It underscores the importance of robust rollback procedures and the need for load testing to detect resource contention before production deployment.

GitHub Copilot experienced a significant outage on January 13 due to a configuration error during a model update, peaking at 100% error rates.
The Copilot recovery was delayed by secondary availability issues with upstream provider OpenAI's GPT-4.1 model.
On January 15, a major version upgrade to data store infrastructure caused resource contention, leading to widespread latency across GitHub services.
The infrastructure incident impacted 1.8% of web and API requests, primarily affecting unauthenticated users through slow queries and timeouts.
Both incidents were mitigated via rollbacks to previous stable versions while GitHub works on improved high-load validation and configuration safeguards.

#sre #data #mlp

Read original

Page 2 of 8

Prev 1 2 3 4...8 Next