We would love to work with you to help address your software supply chain security concerns.
🛡️hardened-runner is an amazing project by @step_security. https://t.co/UIkGTijTHv
— Christophe (@christophetd) August 5, 2022
You can easily integrate it in your GitHub Actions and it will block egress traffic and ensure your code isn't overwritten at runtime, to protect against malicious or compromised dependencies pic.twitter.com/QopZvw2oga
(6/6) Next time when you see a security tweet, don't panic. Read it, understand, think of your code and get the takeaways.
— Gabriel L. Manor (@gemanor) August 4, 2022
Use workflow security tools such @step_security harden runner, a supply chain tool like chain-bench by @AquaSecTeam, and orchestrate them all with @jit_io 🥹
Detecting malware packages in GitHub Actions https://t.co/LWz1hhhps7
— Derecho de la Red (@DerechodelaRed) April 1, 2022
harden-runner: #GitHub #Action to prevent software #supply #chain #attacks
— CK's Technology News (@CKsTechNews) February 28, 2022
Projecthttps://t.co/Kv35d7Mrl7 pic.twitter.com/4eru5oR3pu
This looks really cool! Lets you set policies on traffic in GitHub actions.https://t.co/1UCF502Va1
— xssfopes (Not S&P Approved) (@xssfox) February 15, 2022