Outer Web | Explore

Explore >> Select a destination

You are here		securitylab.github.com Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests \| GitHub Security Lab
\|	\|	cookie.engineer Malware Insights: GitHub Actions Script Injection - Cookie Engineer's Web Log	2.8 parsecs away Travel
\|	\|	Malware Insights: GitHub Actions Script Injection	2.8 parsecs away Travel
\|	\|	github.blog Security best practices for authors of GitHub Actions - The GitHub Blog	1.3 parsecs away Travel
\|	\|	Improve your GitHub Actions security posture by securing your source repository, protecting your maintainers, and making it easy to report security incidents.	1.3 parsecs away Travel
\|	\|	code.dblock.org Commenting on Pull Requests in GitHub Actions - code.dblock.org \| tech blog	1.5 parsecs away Travel
\|	\|	The OpenSearch API specification is authored in OpenAPI and used to auto-generate OpenSearch language clients. I wanted to know how much of the API was described in it vs. the actual API implemented in the default distribution of OpenSearch that includes all plugins. To do so, I have exposed an iterator over REST handlers in OpenSearch core, and wrote a plugin that rendered a very minimal OpenAPI spec at runtime. All that was left was to compare the manually authored OpenAPI spec in opensearch-api-specification to the runtime one, added in opensearch-api-specification#179. The comparison workflow output a total and relative number of APIs described.	1.5 parsecs away Travel
\|	\|	dthompson.us Guile-websocket 0.2.0 released - dthompson	18.6 parsecs away Travel
\|		[AI summary] The release of Guile-websocket 0.2.0 introduces breaking changes to support WebSocket and TLS encrypted connections in Guile Scheme.	18.6 parsecs away Travel