Google, IBM & Meta Certificates — All 10,000+ Courses at 40% Off
One annual plan covers every course and certificate on Coursera. 40% off for a limited time.
Get Full Access
Learn to protect your GitHub Actions workflows from supply chain attacks and security vulnerabilities in this 17-minute conference talk by Jaroslav Lobacevski from GitHub, presented at OpenSSF. Discover common vulnerability patterns that the GitHub Security Lab team has identified in real-world GitHub Actions implementations, including recent supply chain compromises affecting tj-actions and reviewdog. Explore a comprehensive set of best practices and security tools designed to prevent these vulnerabilities from infiltrating your CI/CD pipeline. Gain practical insights into securing your automation workflows and strengthening your development supply chain against emerging threats.
