Skip to main content
Community

StepSecurity Defends CISA CI/CD Pipelines

CISA open source projects use Harden Runner (Community Tier) to defend their CI/CD pipelines from supply chain attacks

Try Harden Runner
See More Examples

Latest Build Secured

https://app.stepsecurity.io/github/cisagov/action-lineage/actions/runs/14155993649

Total Builds Secured Last Week

65197
cisagov/action-lineage
.github/workflows/lineage_scan.yml
36
-name:
Harden Runner
37
-uses:
step-security/harden-runner@v2
38
-with:
36
-name:
Harden Runner
37
-uses:
step-security/harden-runner@v2
38
-with:
36
-name:
Harden Runner
37
-uses:
step-security/harden-runner@v2
38
-with:
View Workflow File

Add Harden Runner to your own repository

Try Harden Runner
How-To

StepSecurity Harden-Runner secures CI/CD runners by providing network visibility and enforcing network egress filtering.

01

Update Your GitHub Actions Workflow

steps:

- uses: step-security/harden-runner@v2

with:

egress-policy: audit

Automate this change using a pull request.

02

Run Your Workflow

Execute your workflow as usual.

03

Review Security Insights

After completion, check the GitHub Actions Job summary for a link to detailed security insights, detections, and recommendations.

StepSecurity | Home
Request a Demo
Start Free
HomeAbout
DocsPricing
Contact UsBook a Demo
© 2025 All rights reserved
Privacy Policy
Terms of Service