Skip to main content
Back to Blog
Product

Export Harden-Runner Security Insights and Detections to Amazon S3

Send Harden-Runner insights and detections to Amazon S3 for centralized analysis, long-term storage, and seamless integration with your security tools
Rohan Prabhu

April 23, 2025

Table of Contents
Loading nav...

We’re excited to announce a new integration for StepSecurity: you can now export Harden-Runner security insights and detections directly to your own Amazon S3 bucket.

This update gives security teams greater flexibility in how they store, analyze, and act on CI/CD telemetry from GitHub Actions. Whether you’re responding to incidents, monitoring trends, or building custom automations, exporting to S3 makes it easier to plug StepSecurity into the tools and workflows you already use.

Why It Matters

CI/CD pipelines are a growing target for attackers, and visibility into what’s happening during every build is critical. Harden-Runner helps protect GitHub Actions by detecting suspicious activity and enforcing runtime restrictions—but until now, those insights lived entirely within the StepSecurity platform.

With the new S3 integration, you can stream that data out of StepSecurity in real-time and into your organization’s security ecosystem. Many third-party analytics, data aggregation, and SIEM solutions support S3 integration, making it easy to incorporate Harden-Runner insights and detections into your existing workflows for monitoring, alerting, and incident response. That means:

  • Seamless integration with your SIEM, incident management, security data lake, and log aggregation platforms.
  • Custom real-time automation based on Harden-Runner findings.
  • Long-term storage in your own environment

How It Works

Once enabled, StepSecurity will continuously export the Harden-Runner data you choose—such as insights or detections—to your designated S3 bucket. You can organize the exported files by date, customize the folder structure, and control which repositories the integration applies to.

The setup process uses an AWS IAM Role with a secure trust relationship, and we provide a CloudFormation template to simplify deployment. There’s no need to share any secrets—such as IAM access keys—with StepSecurity.

Ready to get started?

Set up your S3 integration and start streaming Harden-Runner security data today.

🔗 View the docs for setup instructions →

Blog

Explore Related Posts

Export Harden-Runner Security Insights and Detections to Amazon S3

Send Harden-Runner insights and detections to Amazon S3 for centralized analysis, long-term storage, and seamless integration with your security tools

Rohan Prabhu

April 23, 2025

Read

Evolving Harden-Runner’s disable-sudo Policy for Improved Runner Security

This post details a vulnerability to bypass Harden-Runner’s disable-sudo policy, the assigned CVE, and the steps we’ve taken to mitigate and detect it.

Varun Sharma

April 21, 2025

Read

Announcing Policy-Driven Automated Pull Requests for CI/CD Misconfiguration Remediation

Strengthen CI/CD security with policy-driven automated pull requests. Automatically remediate misconfigurations in your GitHub Action workflows.

Ashish Kurmi

March 26, 2025

Read
StepSecurity | Home
Request a Demo
Start Free
HomeAbout
DocsPricing
Contact UsBook a Demo
© 2025 All rights reserved
Privacy Policy
Terms of Service