all InfoSec news
Four tips to keep your GitHub Actions workflows secure
Aug. 9, 2023, 4 p.m. | Jaroslav Lobacevski
The GitHub Blog: Security News and Updates github.blog
Researchers from Purdue and NCSU have found a large number of command injection vulnerabilities in the workflows of projects on GitHub. Follow these four tips to keep your GitHub Actions workflows secure.
The post Four tips to keep your GitHub Actions workflows secure appeared first on The GitHub Blog.
actions blog command command injection github github actions injection large open source projects researchers security tips vulnerabilities workflows
More from github.blog / The GitHub Blog: Security News and Updates
Introducing Artifact Attestations–now in public beta
4 weeks, 2 days ago |
github.blog
Securing millions of developers through 2FA
1 month, 1 week ago |
github.blog
Gaining kernel code execution on an MTE-enabled Pixel 8
2 months, 2 weeks ago |
github.blog
Keeping secrets out of public repositories
3 months ago |
github.blog
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Corporate Intern - Information Security (Year Round)
@ Associated Bank | US WI Remote
Senior Offensive Security Engineer
@ CoStar Group | US-DC Washington, DC