-
harden-runner
Network egress filtering and runtime security for GitHub-hosted and self-hosted runners
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
Thanks for the feedback!
w.r.t Bypass idea 1: in the future, the plan is to have application level policy, e.g. only allow 'GET https://github.com/owner/repo'.
w.r.t Bypass idea 2: in the future, the plan is to have a policy to disable sudo. Once that is done, user code will not be able to mess with the agent.
NOTE:
The number of mentions on this list indicates mentions on common posts plus user suggested alternatives.
Hence, a higher number means a more popular project.
Related posts
-
Push code with GitHub Actions to Google Cloud’s Artifact Registry
-
How to publish on npm with `--provenance` using Lerna-Lite
-
you must have the "bigquery.datasets.create" permission on the selected project
-
IAM Best Practices [cheat sheet included]
-
harden-runner: Protect your CI/CD pipeline from SolarWinds and Codecov-Type Attacks with the Harden-Runner Security Agent