Anatomy of a Cloud Infrastructure Attack via a Pull Request

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com
Roadmap github-actions Github Security github-enterprise

WorkOS
Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • gitoops

    all paths lead to clouds

    • Shameless plug for something I've been working on: https://github.com/ovotech/gitoops/

    As a pentester, for most companies I looked at, any employee on GitHub/GitLab could likely single handedly access a variety of production contexts through CI/CD pipelines.

    I wrote GitOops to map attacks path through CI/CD systems for a large company I currently work with.

  • roadmap

    GitHub public roadmap

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo

  • auth

    A GitHub Action for authenticating to Google Cloud. (by google-github-actions)

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts