Cloneable elements and templates
Design files, UI kits and iconography
Code snippets for your web projects
September 23, 2024
•
8
minute read
Explore the ins and outs of GitHub token- from using it securely, risks involved, and setting the right token permissions to keep your workflows secure.
September 19, 2024
5
Third-party GitHub Actions accelerate CI/CD pipeline development but pose significant supply chain risks for enterprises. Implementing an internal GitHub Actions marketplace with StepSecurity allows organizations to securely vet, approve, and maintain these Actions, balancing developer productivity with robust security standards.
September 11, 2024
From startups to tech giants, over 4,000 repositories now rely on Harden-Runner for CI/CD security. Learn about our journey and how you can leverage Harden-Runner to protect your software supply chain.
September 5, 2024
4
The Vulnerability in Stripe’s GitHub Actions Workflow Shows Why Securing CI/CD Pipelines Is Essential
August 20, 2024
7
StepSecurity CI/CD security platform now scans GitHub Action artifacts to detect leaked secrets
August 14, 2024
Learn the art of pinning GitHub Actions to safeguard your CI/CD processes with this comprehensive guide.
August 8, 2024
Understand the risks of GitHub Actions in public repositories and learn how to implement best practices to safeguard your CI/CD environment from vulnerabilities and attacks
July 24, 2024
3
StepSecurity platform’s new feature automatically detects secrets in build logs, providing real-time alerts and enhancing your DevSecOps practices.