Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

CNCF [Cloud Native Computing Foundation]

Pwning the CI with GitHub Action Workflows - Security Challenges and Exploits

CNCF [Cloud Native Computing Foundation] via YouTube

Start learning Write review
Corporate Finance Institute Ad

35% Off Finance Skills That Get You Hired - Code CFI35

Learn More → Udacity Ad

Get 50% Off Udacity Nanodegrees — Code CC50

Learn More →

Overview

Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Explore the security vulnerabilities in CI platforms and GitHub Action workflows in this 28-minute conference talk from KubeCon + CloudNativeCon Europe 2023. Delve into the challenges posed by open source and GitOps practices, which expose development pipelines to potential threats. Learn how social engineering techniques and insecure GitHub configurations can be exploited by malicious actors. Witness live demonstrations of known abuses in GitHub Actions workflows, highlighting how default settings and poor practices can compromise the security of your supply chain. Gain valuable insights into protecting your CI/CD pipeline from potential attacks and strengthening your overall cybersecurity posture.

Syllabus

Pwning the CI (with GitHub Action Workflows) - Stephen Giguere, Bridgecrew

Taught by

CNCF [Cloud Native Computing Foundation]

Reviews

Start your review of Pwning the CI with GitHub Action Workflows - Security Challenges and Exploits

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.