all InfoSec news
Argus - A Framework for Staged Static Taint Analysis of GitHub Workflows and Actions
KitPloit - PenTest Tools! www.kitploit.com
This repo contains the code for our USENIX Security '23 paper "ARGUS: A Framework for Staged Static Taint Analysis of GitHub Workflows and Actions". Argus is a comprehensive security analysis tool specifically designed for GitHub Actions. Built with an aim to enhance the security of CI/CD workflows, Argus utilizes taint-tracking techniques and an impact classifier to detect potential vulnerabilities in GitHub Action workflows.
Visit our website - secureci.org for more information.
Features
-
Taint-Tracking: Argus uses sophisticated algorithms to track …
repositories sensitive information taint analysis techniques vulnerabilities website