GitHub Dependabot

Automated dependency updates

↗

Changelog

RSS

GitHub 2 days ago

GitHub Copilot usage metrics now track CLI activity for enterprise deployments//GitHub has expanded its Copilot enterprise usage metrics API to include telemetry from the Copilot CLI, enabling organizations to track daily active users, request counts, and token consumption across command-line environments. This addition gives enterprises comprehensive visibility into how developers use Copilot across all interfaces and helps inform rollout planning and support allocation.

apifeaturerelease

GitHub 2 days ago

GitHub Copilot metrics now generally available with enterprise dashboards and APIs//GitHub Copilot usage metrics is now generally available, providing enterprises with dashboards and APIs to track adoption and usage trends across their organization. The release includes enterprise, organization, and user-level visibility alongside fine-grained access controls and data residency support.

releasefeatureapiplatform

GitHub 3 days ago

GitHub launches Copilot Content Exclusion REST API in public preview//Admins can now programmatically manage Copilot content exclusion rules via a new REST API supporting GET and SET operations at organization and enterprise levels. This enables automation and governance at scale for controlling what content is excluded from Copilot's context.

apifeaturerelease

GitHub 4 days ago

GitHub expands Copilot Usage Metrics API with org-level pull request metrics parity//GitHub has extended its organization-level Copilot Usage Metrics API to include comprehensive pull request activity metrics, bringing feature parity with enterprise-level endpoints. Organizations can now track pull request creation, throughput, and Copilot's impact on the development lifecycle through a unified API.

apifeatureplatform

GitHub 4 days ago

GitHub's Enterprise AI Controls reaches general availability with agent governance tools//GitHub has released Enterprise AI Controls and the agent control plane as generally available features, giving enterprise administrators deeper oversight and auditability of AI agent usage across their organizations. The release includes new capabilities for discovering agent activity, configuring enterprise agent policies via API, and managing custom agent standards through fine-grained permissions.

releasefeatureapiplatform

GitHub 4 days ago

GitHub Copilot gains native web search capabilities for real-time answers//GitHub has enabled model-native web search in GitHub Copilot Chat on github.com for specific GPT models, allowing faster and more accurate answers to time-sensitive questions. The feature is available to paid Copilot subscribers as part of the public preview program and can be toggled on or off in Copilot settings.

featurereleaseplatform

GitHub 5 days ago

Dependabot now consolidates cross-directory dependency updates into single pull requests//Dependabot now supports grouping dependency updates by name across multiple directories in a single pull request. This feature is especially valuable for monorepos where a single dependency bump can affect numerous directories, significantly reducing pull request volume and simplifying upgrade workflows.

featureplatform

GitHub 1 week ago

GitHub Copilot organization-level usage metrics dashboard enters public preview//GitHub is expanding Copilot's analytics capabilities beyond enterprise-only access, making usage metrics dashboards available to organization owners. The new dashboard provides organization-scoped insights into adoption and usage trends without requiring enterprise-wide visibility.

featureplatformapi

GitHub 1 week ago

GitHub Copilot Usage Metrics API now tracks pull request throughput and merge time//GitHub has expanded its Copilot usage metrics API with new enterprise-level endpoints for measuring pull request outcomes. Organizations can now track PR review suggestions, merge rates, and cycle time to quantify how Copilot impacts development velocity.

apifeatureplatform

GitHub 1 week ago

GitHub Copilot coding agent now assignable from Raycast launcher//GitHub's Copilot coding agent can now be invoked directly from Raycast, a free launcher for macOS and Windows. Users can assign issues to Copilot, create new tasks, and track progress—all without leaving the Raycast interface—via the newly updated GitHub Copilot extension.

featureintegrationplatform

GitHub 2 weeks ago

GitHub Mobile gains Copilot model picker for on-the-go coding sessions//Copilot Pro and Pro+ subscribers can now select from multiple AI models directly in GitHub Mobile when starting a coding agent session, without switching to desktop. The feature supports auto-selection or manual choice between Claude Opus/Sonnet and OpenAI GPT models.

featurereleasemodel

GitHub 2 weeks ago

GitHub Dependabot audit logs now track configuration changes for security and compliance//GitHub has added two new audit log event types to track Dependabot configuration changes at the organization and enterprise level. The new events log when Dependabot vulnerability updates or self-hosted runner configurations are enabled or disabled, capturing the actor and timestamp of each change.

featureapisecurityplatform

GitHub 3 weeks ago

Dependabot adds OIDC authentication support for private registries//Dependabot now supports OpenID Connect (OIDC) authentication with private registries including AWS CodeArtifact, Azure DevOps Artifacts, and JFrog Artifactory. This eliminates the need for long-lived credentials stored as secrets, replacing them with short-lived dynamically generated tokens similar to GitHub Actions OIDC federation.

featuresecurityapi

GitHub 3 weeks ago

GitHub releases Dependabot Proxy as open source under MIT license//GitHub has open sourced the Dependabot Proxy, the HTTP authentication layer that handles connections between Dependabot and the GitHub API, private package registries, and Git servers. The proxy supports nine package managers including npm, Maven, Docker, and Cargo, enabling organizations to audit how their dependency updates are authenticated and contribute improvements to the codebase.

open-sourcereleasefeaturesecurityintegration