DevOps Platform Updates
scanned 40d ago3Latest announcements and changes from GitHub, GitLab, Azure DevOps, Bitbucket, and Atlassian.
GitHub Advanced Security Trial from Risk Assessment
GitHub now allows enterprise admins to start Advanced Security trials directly from Secret Protection or Code Security risk assessments. This streamlines security evaluation for GitHub's flagship security products, making it easier for organizations to test protective measures against credential exposure and code vulnerabilities.
Azure DevOps Critical Information Disclosure CVE-2026-42826
Microsoft patched a critical CVSS 10.0 information disclosure vulnerability in Azure DevOps that allows unauthenticated remote attackers to access sensitive information over network connections. This represents the highest severity rating and requires immediate attention from Azure DevOps administrators.
GitHub Code Scanning API Endpoint Simplified
GitHub removed the code_scanning_upload field from rate_limit REST API endpoint response to eliminate confusion about rate limits. The field was removed because code scanning uploads actually use the standard core rate limit pool, not a separate category, streamlining API integration for security tools.