Varun SharmainInfoSec Write-upsGitHub Actions Security for Actions Runner Controller (ARC) and GitHub-Hosted RunnersProtect Against CI/CD Attacks that Poison GitHub Actions Workflows to Exfiltrate Credentials or Tamper Release BuildsJul 26, 2023Jul 26, 2023
Varun SharmainInfoSec Write-upsGitHub Actions Goat — a Deliberately Vulnerable GitHub Actions CI/CD EnvironmentDelve into the intricacies of GitHub Actions Security by forking the GitHub Actions Goat project and learning by doing. All you need to…Jul 21, 2023Jul 21, 2023
Varun SharmainStepSecurityOrchestrating Security: StepSecurity’s Impact on 400+ Repositories and Future PlansStepSecurity’s pull request feature has helped over 400 public repositories orchestrate application security tools and harden CI/CD…Jun 8, 2023Jun 8, 2023
Varun SharmainStepSecurityIntroducing the Runtime Detections UI for StepSecurity Harden RunnerConsolidated view of past CI/CD runtime detections across GitHub Actions workflows in your organizationJun 6, 2023Jun 6, 2023
Varun SharmainStepSecurityStepSecurity Harden Runner Now Supports Wildcard Domains in Block ModeAllow egress traffic to all subdomains with a single rule, simplifying the process of managing and configuring egress policies.May 25, 2023May 25, 2023
Varun SharmainStepSecurityCelebrating 1000 Repositories Secured with Harden Runner: A Journey of Growth and CollaborationHarden Runner has secured a total of 1,236,972 CI/ CD pipeline executions, a testament to its robust performance and scalabilityMay 22, 2023May 22, 2023
Varun SharmainStepSecurity🎉🔐 Introducing the game-changing Org-Wide Dashboard for Secure Software Development!Empowering Organizations with Comprehensive Security Insights: Unveiling the Secure Software Development Scorecard (SSDS)Apr 21, 2023Apr 21, 2023
Varun SharmainStepSecurityStepSecurity’s Catalog of FixesTransforming the Way Developers Approach Security Best PracticesApr 10, 2023Apr 10, 2023
Varun SharmainStepSecuritySecure Software Development: StepSecurity’s Role in Increasing OpenSSF Scorecard ScoresStepSecurity’s pull request feature has helped over 300 repositories adopt secure development practices.Apr 6, 2023Apr 6, 2023
Varun SharmainStepSecurityIntroducing Harden Runner Policy StoreEasily set and manage your policies without altering the workflow file!Apr 4, 2023Apr 4, 2023