How Can CI/CD Go Horribly Wrong?

In this video we’ll learn the basics of Continuous Integration and Continuous Deployment (CI/CD) and what security implications it has – with a live demo example, showcasing how we can perform direct pipeline poisoning to execute code and ultimately leak sensitive production info like AWS credentials!

You can learn more about Carlos Polop, Ignacio Dominguez or the security audits and assessments that HALBORN performs at https://j-h.io/halborn

00:00 - How Can CI/CD Go Horribly Wrong?
01:19 - What is CI/CD?
03:47 …

aws aws credentials basics code continuous continuous integration credentials demo deployment info integration leak learn live pipeline poisoning security video