GitHub is grappling with outages, security issues, and a talent drain. Since Microsoft’s $7.5 billion acquisition in 2018, concerns about Microsoft’s control lingered. Now, nearly eight years later, GitHub is facing outages, security challenges, and competitive pressure. Recent weeks saw major outages, a remote code execution vulnerability, and breaches in its internal code repositories via a malicious extension on an employee’s device. Current and former employees report leadership struggles and competitive pressure affecting the company.
The chaos escalated last summer after former CEO Thomas Dohmke’s resignation. Microsoft didn’t appoint a new CEO, forcing GitHub leaders to report to Microsoft’s CoreAI team instead. Employees, long proud of their independence, are struggling to adapt. The CoreAI team is led by Jay Parikh, who Microsoft CEO Satya Nadella recruited for AI transformation. Parikh, not popular within Microsoft, decided against appointing a new GitHub CEO.
Since Dohmke’s departure, GitHub has faced a talent exodus. Many employees are leaving for Dohmke’s new startup Entire, a rival developer platform. Parikh is wary of upstarts like Entire and competitors like Cursor and Claude Code. GitHub Copilot once led in AI coding but has recently lagged. Parikh has reportedly warned of a “critical threat” and Microsoft considered acquiring Cursor to bridge the gap.
Leadership instability is ongoing. Veteran Microsoft exec Julia Liuson exited after 34 years. She previously oversaw GitHub, managing its revenue and engineering. Jared Palmer, GitHub’s recent senior VP, left for Xbox, joining other Microsoft CoreAI execs eager to escape Parikh’s leadership. Former chief revenue officer Elizabeth Pemmerl also resigned, with Dan Stein from Microsoft taking over. Some insiders feel there’s no more distinct GitHub leadership.
Outages have worsened, prompting apologies from GitHub CTO Vladimir Fedorov, who noted growth spikes in pull requests and repos. GitHub is addressing capacity issues alongside its migration to Azure servers. Developers are frustrated, with some, like renowned developer Mitchell Hashimoto, leaving GitHub after 18 years due to persistent outages.
Security issues compound the struggles. In March, GitHub patched a critical vulnerability within hours after AI models exposed a potential large-scale breach. Recently, 3,800 internal repositories were compromised, raising concerns over extension security. Users must now endure GitHub Copilot’s usage-based billing, potentially halting services unless they purchase additional AI credits.
Parikh’s team faces immense pressure to secure GitHub’s future, while competitors look to capitalize on Microsoft’s struggles. If the CoreAI team falters, Microsoft risks losing the developer support crucial to its success.