Pwning the CI - GitHub Actions Edition
Offered By: RSA Conference via YouTube
Course Description
Overview
Explore the security challenges in CI/CD pipelines, specifically focusing on GitHub Actions, in this 35-minute conference talk from RSA Conference. Discover how open source and GitOps practices have exposed new vulnerabilities in continuous integration solutions. Learn about known exploits targeting GitHub Actions workflows and understand how simple bad practices can compromise the security of your software supply chain. Gain valuable insights from Stephen Giguere, Cloud Security Advocate at Palo Alto Networks, as he demonstrates the potential risks and attack vectors that malicious actors can exploit in poorly configured CI environments.
Syllabus
Pwning the CI (GitHub Actions Edition)
Taught by
RSA Conference
Related Courses
Cyber Security in ManufacturingUniversity at Buffalo via Coursera Supply Chain and Operations Management Tips
LinkedIn Learning Kubernetes Security: Implementing Supply Chain Security
Pluralsight Implement Cybersecurity Best Practices in Your Organization
Salesforce via Trailhead ISC2 Certified Secure Software Life-Cycle Professional (CSSLP)
Cybrary