Git and GitHub Actions Security of Devsecops with AWS

News

GitHub Actions artifacts found leaking auth tokens ... - BleepingComputer

Multiple high-profile open-source projects, including those from Google, Microsoft, AWS, and Red Hat, were found to leak GitHub authentication tokens through GitHub Actions artifacts in CI/CD ...

CSOonline1mon

GitHub Actions attack renders even security-aware orgs vulnerable

Security risks associated with GitHub Actions workflows are not new. Still, researchers from Sysdig have identified dozens of vulnerable projects, including ones from high-profile security-aware ...

SiliconANGLE8mon

JFrog and GitHub advance DevSecOps with SAST and Runtime Security ...

In addition to SAST integration, JFrog’s Runtime Security now offers real-time monitoring within GitHub Actions that focuses on the security of applications in production environments.

Infosecurity-magazine.com3mon

Tj-actions Supply Chain Attack Traced Back to Single GitHub Token ...

A recent supply chain attack that compromised the popular tj-actions/changed-files GitHub action has left a trail of digital destruction, affecting 218 GitHub repositories. As investigators dig deeper ...

Results that may be inaccessible to you are currently showing.

Hide inaccessible results