Detect malicious build tools and packages in your GitHub Actions workflows
GitHub Actions is a great platform for building CI/CD pipelines for your projects. StepSecurity is focused on creating open-source security solutions for CI/CD platforms and we’re excited to announce that we have partnered with GitHub to release a GitHub Action called Harden Runner that can detect compromised build tools and dependencies in your GitHub Actions workflows.
Detect malicious build tools and packages in your GitHub Actions workflows using Harden Runner GitHub Action, available in the @github Marketplace @GitHubEnt. Blog post: https://t.co/JnekKCCfBi— StepSecurity (@step_security) May 18, 2022