Showing 0 Items
The Vulnerability in Stripe’s GitHub Actions Workflow Shows Why Securing CI/CD Pipelines Is Essential
Learn the art of pinning GitHub Actions to safeguard your CI/CD processes with this comprehensive guide.
StepSecurity platform’s new feature automatically detects secrets in build logs, providing real-time alerts and enhancing your DevSecOps practices.
StepSecurity's pull request feature has helped over 400 public repositories orchestrate application security tools and harden CI/CD pipelines
Harden-Runner now supports Actions Runner Controller (ARC) based self-hosted GitHub Actions runners, enabling enhanced security and seamless integration for your CI/CD workflows.
Your guide to implementing GitHub Actions security best practices- from secret management, third-party actions governance, workflow change management, and more
Are you worried about the security of docker in GitHub Actions Runner Controller runners? Do you know that docker in docker (dind) uses the privileged mode in Kubernetes? In this blog post, we will learn how to properly secure docker in ARC runners.
Real-world examples of how Google uses StepSecurity to automate GitHub Actions security for their public repositories, leading to developer productivity, consistent use of best practices, and risk reduction.
