Let's work together!

We would love to work with you to help address your software supply chain security concerns.

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.

Let's work together!

We would love to work with you to help address your software supply chain security concerns.

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.

Twitter Shoutouts

🛡️hardened-runner is an amazing project by @step_security. https://t.co/UIkGTijTHv

You can easily integrate it in your GitHub Actions and it will block egress traffic and ensure your code isn't overwritten at runtime, to protect against malicious or compromised dependencies pic.twitter.com/QopZvw2oga
— Christophe (@christophetd) August 5, 2022

(6/6) Next time when you see a security tweet, don't panic. Read it, understand, think of your code and get the takeaways.
Use workflow security tools such @step_security harden runner, a supply chain tool like chain-bench by @AquaSecTeam, and orchestrate them all with @jit_io 🥹
— Gabriel L. Manor (@gemanor) August 4, 2022

Detecting malware packages in GitHub Actions https://t.co/LWz1hhhps7
— Derecho de la Red (@DerechodelaRed) April 1, 2022

harden-runner: #GitHub #Action to prevent software #supply #chain #attacks

Projecthttps://t.co/Kv35d7Mrl7 pic.twitter.com/4eru5oR3pu
— CK's Technology News (@CKsTechNews) February 28, 2022

This looks really cool! Lets you set policies on traffic in GitHub actions.https://t.co/1UCF502Va1
— xssfopes (Not S&P Approved) (@xssfox) February 15, 2022

Let's work together!

Let's work together!

Blog Posts

Twitter Shoutouts

Useful Links

Community

Let's work together!

Let's work together!

Blog Posts

Twitter Shoutouts

Useful Links

Community

Get on the Newsletter