Skip to content

Reading / 2026-06/2026-06-23t231556-if-i-could-make-my-own-github

If I Could Make My Own GitHub

A developer wishlist for a reimagined code forge: pre-commit remote CI, nuanced PR approvals, stacked PRs as first-class citizens, signed/offline-usable Actions, and a smaller self-hostable unit than GitHub Enterprise.

Jun 23, 2026 · tech · Mat Duggan, matduggan.com

Read at the source →

Topics

  • developer-tooling
  • software-engineering
  • open-source
  • continuous-integration
  • supply-chain-security

Cited by

  • Continuous integration

    CI pipelines face compounding pressures from scale, flaky tests, merge queue correctness, supply chain attacks, and AI-generated code — each demanding stricter architecture at the point where code enters the main branch.

  • Developer tooling

    Developer tooling spans the full surface area of software construction — version control, testing, shell ergonomics, AI coding assistants, and platform infrastructure — with a consistent theme: reducing friction without sacrificing correctness or security.

  • Open source

    Open source spans infrastructure, tooling, security risk, and platform trust — the cited sources collectively show it as a foundation for local AI, developer tooling, and code forges, with its benefits shadowed by real supply-chain and stewardship threats.

  • Software engineering

    Software engineering spans craft, process, and judgment — how code is structured, tested, reviewed, deployed, and maintained — and the sources collected here collectively interrogate each layer as AI tooling reshapes who does what and why.

  • Supply chain security

    Attackers exploit the trust placed in shared code infrastructure, from invisible Unicode payloads in npm packages to self-propagating credential stealers, while defenses range from commit signing to agentic vulnerability scanning.

Related

back to /reading