Go to the Newsfeed

Detect malicious build tools and packages in your GitHub Actions workflows


GitHub Actions is a great platform for building CI/CD pipelines for your projects. StepSecurity is focused on creating open-source security solutions for CI/CD platforms and we’re excited to announce that we have partnered with GitHub to release a GitHub Action called Harden Runner that can detect compromised build tools and dependencies in your GitHub Actions workflows.