How to secure your GitHub Actions - Rob Bos

preview_player
Показать описание
When working in the real world with continuous integration / continuous deployment, you have to take care of your pipelines.

- Who can push to an environment?
- Who could change the connection strings to the database?
- Who can create new resources in your cloud environment?
- Do you trust your third party extensions?

I'll go over each of these aspects of your GitHub Actions Workflows and show you what to look for and how to improve your security stance without locking every DevOps engineer out.

First public delivery
Target audience: DevOps engineers using GitHub Actions
  1. NDC Conferences
Рекомендации по теме
How to Secure 0:01:13

How to Secure Your GitHub Account with 2FA using Authenticator App

Protect Your Code 0:05:42

Protect Your Code with GitHub Security Features in 5 Minutes • Rob Bos • GOTO 2023

GitHub branch rules 0:07:43

GitHub branch rules (protect your git branches)

GitHub Profile Tips 0:03:49

GitHub Profile Tips to standout (& stay secure) | GitHub tutorial

How to Secure 0:01:35

How to Secure Your GitHub Account with 2FA using Authenticator App (2024)

How To Secure 0:01:55

How To Secure Your Github Account With 2FA Using Authenticator App

Transform your code 0:00:47

Transform your code security with GitHub's code scanning autofix

Secure your GitHub 0:01:02

Secure your GitHub account with a YubiKey

Do you know 0:01:00

Do you know what happens when you clone a GitHub repository using SSH? #coding #cloudcomputing

Keeping your GitHub 0:03:49

Keeping your GitHub Actions and workflows secure - GitHub Checkout

Git Good at 0:01:20

Git Good at Securing your Code • How to enable 2FA on GitHub

Best practices for 0:11:02

Best practices for securing GitHub in the cloud - Universe 2022

Your Private GitHub 0:14:58

Your Private GitHub Repos Aren't as Private as You Think

Protect Your Code 0:48:59

Protect Your Code with GitHub Security Features • Rob Bos • GOTO 2023

🐱Generate a New 0:01:52

🐱Generate a New SSH Key and Add it to your GitHub

GitHub Branch Protection 0:02:23

GitHub Branch Protection Tutorial

Secure your GitHub-hosted 0:06:09

Secure your GitHub-hosted runners with Azure private networking

How to secure 0:51:03

How to secure your GitHub Actions - Rob Bos

3.4 Hiding API 0:11:51

3.4 Hiding API Keys with Environment Variables (dotenv) and Pushing Code to GitHub

Secure your GitHub 0:01:53

Secure your GitHub Account with Passkey

Secure Your Code 1:25:05

Secure Your Code With GitHub Code Scanning

52. Add Collaborators 0:12:22

52. Add Collaborators and apply branch protection rules in Github for restricting commits - GIT

How to setup 0:02:24

How to setup 2FA with GitHub

What is GitHub 0:00:45

What is GitHub Advanced Security?

Комментарии
Автор

Apologies for the sound, it is indeed not good! This iteration on GitHub Universe had a lot better sound:

Rob-Bos
Автор

very bad voice quality which is killing content

darshanmarathe