Outer Web | Explore

Explore >> Select a destination

You are here		securitylab.github.com GHSL-2023-107: GitHub Actions Command Injection in Jellyfin \| GitHub Security Lab
\|	\|	shipit.dev Github Actions workflow for merged/closed PRs	12.3 parsecs away Travel
\|	\|	A little guide on how to trigger Github Actions workflows when a PR has been closed while distinguishing whether is has been merged or not.	12.3 parsecs away Travel
\|	\|	adnanthekhan.com Release-Drafter To google/accompanist Compromise: VRP Writeup - Adnan Khan	12.9 parsecs away Travel
\|	\|	In this post, I cover how I discovered a CI/CD misconfiguration in the Release Drafter GitHub action and demonstrated how it could have directly impacted a Google owned open-source repository (and many more!) that used it by tag instead of SHA.	12.9 parsecs away Travel
\|	\|	github.blog Security best practices for authors of GitHub Actions - The GitHub Blog	4.3 parsecs away Travel
\|	\|	Improve your GitHub Actions security posture by securing your source repository, protecting your maintainers, and making it easy to report security incidents.	4.3 parsecs away Travel
\|	\|	snapcraft.io What is virtualisation? The basics \| Snapcraft	104.6 parsecs away Travel
\|		Virtualisation plays a huge role in almost all of today's fastest-growing software-based industries. It is the foundation for most cloud computing, the go-to methodology for cross-platform development, and has made its way all the way to 'the edge'; the eponymous IoT. This article is the first in a series where we explain what virtualisat [...]	104.6 parsecs away Travel