GitHub Outage Map

Community Discussion

Tips? Frustrations? Share them here. Useful comments include a description of the problem, city and postal code.

Beware of "support numbers" or "recovery" accounts that might be posted below. Make sure to report and downvote those comments. Avoid posting your personal information.

GitHub Issues Reports

Latest outage, problems and issue reports in social media:

• 
  Sudipta Dey (@Doom_S_Dey) reported 6 minutes ago

  @mitchellh I agree, though I sympathize with the devs trying not to crash the tab. Both GitHub and GitLab have the "expand" problem, click, wait, click, wait, and it still truncates large diffs. For anything serious, pulling locally is the only reliable option.

• 
  Christoffer Bjelke (@chribjel) reported 9 minutes ago

  @0xRizzler they're using github issues at least

• 
  IvanV1 (@Ivanv1) reported 13 minutes ago

  Here is why this is a huge problem: • Internal IP & secrets exposed: 3,800 internal repos likely contain proprietary code, architecture, tools, and (possibly unrotated) credentials that attackers can weaponize against GitHub or its customers. • Supply-chain risk: GitHub is infrastructure for millions of developers. Compromised internals can lead to backdoors in future features, Copilot, Actions, or enterprise tools. • Trust erosion: A major platform got breached via a simple trojanized VS Code extension — it signals weak internal controls and raises doubts about their security posture.

• 
  boone kathalan (@xEfscarpmint) reported 15 minutes ago

  Product already live: • GitVault deployment system • gitbankbot GitHub app • Terminal CLI • MCP server for Claude / Cursor / Windsurf • Gasless meta transactions • Auto payouts on PR merge This is more infra-focused than meme-focused. @Gitbank_io

• 
  MOI (@MOI_Tech) reported 17 minutes ago

  Count the agents you've shipped this month. Now count the credentials each one is holding: > Your OpenAI key > Your Anthropic key > Your Stripe key > Your GitHub PAT > Your wallet seed > Your Gmail OAuth > Your Notion token Every copy is a liability you can't audit or revoke. We're about to show you the fix.

• 
  Tubby (@tubtub2000) reported 18 minutes ago

  @Sewattube @sethwbarton @github Large companies have started migrating to self-hosted GitHub Enterprise appliance the past six months. Along with Zscaler and Microsoft365 SSO. Not sure if this issue affects the self-hosted version or not.

• 
  Avatier (@Avatier) reported 18 minutes ago

  @CISAgov @github Security controls must be NON-BYPASSABLE. If users can turn off the protection meant to secure them, you have a problem. It becomes security theater. We must design systems where the secure path is the easiest path. Otherwise, workarounds multiply.

• 
  Patrik (@PatrikTheDev) reported 18 minutes ago

  @theo That would maybe force them to acknowledge the existence of a problem…wait ofc it wouldn’t, they’re GitHub

• 
  Matt (@stacks0x_) reported 20 minutes ago

  Nx Console seems to have been the compromised extension behind the GitHub incident yesterday. This extension has been downloaded 2.2 million times. The velocity at which these attacks are taking place is wild and from the current trajectory, they do not appear to be slowing down. Brace for impact.

• 
  Beka Makharoblishvili (@bekamakhar) reported 20 minutes ago

  GitHub just got hit through a poisoned VS Code extension. Not surprising. Developers trust their workflow tools more than anything else. That’s the real attack surface. I’m building Branchpost, which asks you to connect your repo. This is exactly why most devs won’t click that button. Not because the product is bad. Because the trust isn’t there yet. So the real problem isn’t “AI blog generation”. It’s proving: – I can’t break your repo – I don’t touch your code – you stay in control That’s the bar now.

• 
  vx-underground (@vxunderground) reported 20 minutes ago

  GitHub is a platform where people can share code and collaborate on code bases. It is a place for nerds to write code, share it, document it, and argue about it by leaving passive aggressive comments. GitHub is owned by Microsoft. Microsoft acquired it some years ago. Since Microsoft acquired GitHub, GitHub has made some changes which have angered nerds, especially nerds who dislike Microsoft. Most notably, Microsoft has been pushing heavily in the AI department with their AI product named "Copilot". GitHub has come under heavy scrutiny by nerds because GitHub as of recent seems to be using Copilot to perform administrative tasks which has resulted, in no exaggeration, severe downtime with the website. Like, it basically goes offline every other day. Imagine if YouTube was going offline every other day for a few hours. Would you find that to be acceptable from a multi-billion dollar company? GitHub going offline is a problem because large organizations, and large free and open-source software projects, use GitHub to make changes, report bugs, and apply fixes. GitHub has gone offline so much recently that several high-profile nerds have (some what dramatically) announced their departure from GitHub and moved to other GitHub-like websites. The "banger" in this post is that GitHub was compromised ("hacked") because one of their employees accidentally detonated malware on their work computer (accidentally ran a malicious program) and managed to steal internal code ... before the company was having infrastructure issues again making it impossible for the "hackers" to steal any of their internal source code. The irony is that if GitHub was having infrastructure problems the "hackers" may not have been able to steal their internal source code.

• 
  Rahul Kulkarni (@0xrahul) reported 23 minutes ago

  github got hacked yesterday through a poisoned vscode extension. 3800 internal repos exposed. source code and keys up for sale on a cybercrime forum. this stuff matters for crypto. one leaked api key and wallets get drained in minutes. gh already told everyone to rotate keys. but honestly, hacks have become so normal we barely react anymore. monad yesterday, thorchain last week, bridge after bridge. we’ve built incredible things in this space defi, ai agents moving real money, all of it. the innovation is insane. yet the security layer is still completely broken. audits help, but once code ships, there’s almost nothing protecting the final click: “approve”. nobody is really building the layer between intent and execution the part that asks: do you actually know what youre signing? is this what you reviewed?

• 
  Maya Nedeljković Batić (@maya_ndljk) reported 23 minutes ago

  @3266miles @karrisaarinen @linear I'm guessing this is a table created via API/MCP server/synced with GitHub and not in the app? We try to make them full-ish width now in app, the programmatic side still needs work. (I'm kidding, all of it needs work 🫠)

• 
  AMLBot (@AMLBotHQ) reported 24 minutes ago

  Another reminder that everything that you store in cloud you are storing on somebody's else server or PC. GitHub has suffered from an attack -- comprimised employee device was used to access private repos, with some sources reporting more than 3800 repos affected. Delete your API keys and other sensitive data, and stay safe!

• 
  sarah (@sarahfim) reported 24 minutes ago

  here is what i mean: yesterday someone pinged me in Slack: "Playground is not working for this user". a year ago i would have instantly opened 5 windows: Slack, DataDog, PostHog, Cursor, GitHub. yesterday I did all of it in one prompt. @claudeai uses @composio to pull the context it needs in from all the sources in parallel, scans my code base and hands me a root cause with receipts in less than 15 minutes. it has become so much easier to do things in this way that opening Claude is muscle memory and some apps I used to open everyday are slowly becoming unfamiliar to me... and yes, this is coming from someone who sometimes builds dashboards for a living. recreation screenshot with private info redacted: