Trending

#cicdsecurity

Latest posts tagged with #cicdsecurity on Bluesky

Latest Top
Trending
#MJF Tribute #Javier Bardem #WBC #Marty Supreme #Andrade #Jessie Buckley #Academy Awards #MBJ #Autumn Durald Arkapaw #Wallace #MJF Tribute #Javier Bardem #WBC #Marty Supreme #Andrade #Jessie Buckley #Academy Awards #MBJ #Autumn Durald Arkapaw #Wallace

Posts tagged #cicdsecurity

Talk Nerdy to Me!
Talk Nerdy to Me!
@talk-nerdyto-me.bsky.social
9 months ago

Example: GitHub Actions OIDC with Azure, Azure DevOps Service Connections with Workload Identity Federation. It's more setup, but vastly more secure!
#DevSecOps #CICDSecurity #OIDC #WorkloadIdentity #AzureSecurity #OCISecurity #TalkNerdyToMe

0 0 0 0
Hacker News Companion
Hacker News Companion
@hncompanion.com
10 months ago

Overview of HN discussion on GitHub Actions security risks & mitigation. Topics: pinning actions, sandboxing, self-hosted runners. Securing CI/CD is complex, needs a multi-layered approach. #CICDsecurity 1/6

0 0 1 0
The DefendOps Diaries
The DefendOps Diaries
@defendopsdiaries.bsky.social
11 months ago
Preview
Understanding the GitHub Action Supply Chain Attack | The DefendOps Diaries Explore the GitHub Action supply chain attack, its impact, and mitigation strategies for CI/CD environments.

Understanding the GitHub Action Supply Chain Attack

#github
#supplychainattack
#cicdsecurity
#cybersecurity
#devsecops

0 0 0 0
The DefendOps Diaries
The DefendOps Diaries
@defendopsdiaries.bsky.social
11 months ago
Preview
Enhancing GitHub Actions Security: Strategies and Insights | The DefendOps Diaries Explore strategies to secure GitHub Actions against supply chain attacks with pinning, allow-lists, and secret rotation.

Enhancing GitHub Actions Security: Strategies and Insights

#githubactionssecurity
#cicdsecurity
#supplychainattack
#devsecops
#githubsecurity

0 0 0 0
The DefendOps Diaries
The DefendOps Diaries
@defendopsdiaries.bsky.social
11 months ago
Preview
Strengthening CI/CD Security: Lessons from the tj-actions Supply Chain Attack | The DefendOps Diaries Learn how to secure CI/CD pipelines against supply chain attacks with zero-trust models and verified actions.

Strengthening CI/CD Security: Lessons from the tj-actions Supply Chain Attack

#cicdsecurity
#supplychainattack
#zerotrust
#devsecops
#githubactions

0 0 0 0
John P. Mello Jr.
John P. Mello Jr.
@jpmjr.bsky.social
1 year ago
Preview
CI/CD pipelines and the cloud: Are your development secrets at risk? When combined with cloud service providers' CLIs, CI/CD can pose a serious security threat. Here's why — and how to keep a lid on your sec...

When combined with cloud service providers' CLIs, CI/CD can pose a serious security threat to secrets. #CICDSecurity #SecretsManagement #CloudSecurity #DevSecOps #SoftwareSupplyChain #SecretsLeakage #BestPractices #EnvironmentVariables #CloudCLIs
tinyurl.com/367jn6ra

0 0 0 0