🛡️Security agent for the GitHub-hosted runner to monitor the build process
Thanks for the feedback!
w.r.t Bypass idea 1: in the future, the plan is to have application level policy, e.g. only allow 'GET https://github.com/owner/repo'.
w.r.t Bypass idea 2: in the future, the plan is to have a policy to disable sudo. Once that is done, user code will not be able to mess with the agent.
Truly a developer’s best friend. Scout APM is great for developers who want to find and fix performance issues in their applications. With Scout, we'll take care of the bugs so you can focus on building great things 🚀.
Do you maintain a GitHub Action? Contribute to the SecureWorkflows project!
1 project | reddit.com/r/programming | 31 Aug 2022
StepSecurity releases tool that it used to improve security of 30 critical open-source projects (including NodeJS, OpenSSL, Python, Rails, React Native)
1 project | reddit.com/r/cybersecurity | 16 Aug 2022
Badges - TL;DR for your repository's README
7 projects | dev.to | 15 Jul 2022
What about Kubescape In Your CI Pipeline?
4 projects | dev.to | 26 Jun 2022
5 projects | news.ycombinator.com | 3 May 2022