cicd
Actions Runner Controller 0.12.0 release - GitHub Changelog
https://github.blog/changelog/2025-06-13-actions-runner-controller-0-12-0-release/
The Actions Runner Controller (ARC) 0.12.0 release introduces several enhancements including: public preview support for Red Hat OpenShift Kubernetes clusters and vault-based secret management, improvements to Docker-in-Docker (DinD) container mode,…
Added 1 month ago
CI/CD Observability with OpenTelemetry - A Step by Step Guide | SigNoz
https://signoz.io/blog/cicd-observability-with-opentelemetry/
In the fast-paced world of CI/CD, understanding the performance and behaviour of your pipelines is crucial. In this guide, we'll walk through setting up OpenTelemetry for GitHub Actions, with practical examples and configuration snippets.
Added 1 month ago
Securing CI/CD workflows with Wazuh
https://thehackernews.com/2025/05/securing-cicd-workflows-with-wazuh.html?m=1
Added 1 month ago
Enhancing your DevSecOps with Wazuh. The open source XDR platform
https://www.bleepingcomputer.com/news/security/enhancing-your-devsecops-with-wazuh-the-open-source-xdr-platform/
Security shouldn't wait until the end of development. Wazuh brings real-time threat detection, compliance, and vulnerability scanning into your DevOps pipeline—powering a stronger DevSecOps strategy from day one. Learn more about how Wazuh can help secure your development cycle.
10 Hidden Gems in GitHub Actions for Automating Your Workflow - DEV Community
https://dev.to/balrajola/10-hidden-gems-in-github-actions-for-automating-your-workflow-1i6l
GitHub Actions has revolutionized how we automate workflows, especially in a DevOps-driven world.... Tagged with webdev, github, productivity, githubactions.
Added 1 month ago
Exploiting CI / CD Pipelines for fun and profit – Razz Security Blog
https://blog.razzsecurity.com/2024/09/08/exploitation-research/exploiting-ci-cd-pipelines-for-fun-and-profit/
Added 1 month ago
Security best practices for authors of GitHub Actions - The GitHub Blog
https://github.blog/2023-11-16-security-best-practices-for-authors-of-github-actions/
Improve your GitHub Action’s security posture by securing your source repository, protecting your maintainers, and making it easy to report security incidents.
Added 1 month ago
Raven: Open-source CI/CD pipeline security scanner - Help Net Security
https://www.helpnetsecurity.com/2023/10/27/raven-open-source-security-scanner/
Raven is an open-source CI/CD pipeline security scanner that makes hidden risks visible by connecting the dots across vulnerabilities.
Added 1 month ago
How to mitigate OWASP vulnerabilities while staying in the flow | The GitHu
https://github.blog/2022-11-04-how-to-mitigate-owasp-vulnerabilities-while-staying-in-the-flow/
Explore how GitHub Advanced Security can help address several of the OWASP Top 10 vulnerabilities
Added 1 month ago
Free: Dastardly from Burp Suite | Blog - PortSwigger
https://portswigger.net/blog/free-dastardly-from-burp-suite
Introducing Dastardly - a free, lightweight web application security scanner for your CI/CD pipeline, from the makers of Burp Suite. Secure web development ain't easy Ensuring your code is written sec
Added 1 month ago
https://github.com/cirruslabs/tart
https://github.com/cirruslabs/tart
macOS and Linux VMs on Apple Silicon to use in CI and other automations - cirruslabs/tart
Added 1 month ago
GitHub Actions Security Best Practices [cheat sheet included]
https://blog.gitguardian.com/github-actions-security-cheat-sheet/
Learn how to secure your GitHub Actions with these best practices! From controlling credentials to using specific action version tags, this cheat sheet will help you protect against supply-chain attacks. Don't let a malicious actor inject code into your repository - read now!
Added 1 month ago
How to start using reusable workflows with GitHub Actions | The GitHub Blog
https://github.blog/2022-02-10-using-reusable-workflows-github-actions/
Reusable workflows offer a simple and powerful way to avoid copying and pasting workflows across your repositories.
Added 1 month ago
How to keep up with CI/CD best practices | GitLab
https://about.gitlab.com/blog/2022/02/03/how-to-keep-up-with-ci-cd-best-practices/
Added 1 month ago
How to build a CI/CD pipeline with GitHub Actions in four simple steps | Th
https://github.blog/2022-02-02-build-ci-cd-pipeline-github-actions-four-steps/
Here’s a quick guide on the advantages of using GitHub Actions as your preferred CI/CD tool—and how to build a CI/CD pipeline with it.
Added 1 month ago
Hurl - Run and Test HTTP Requests
https://hurl.dev/
Hurl, run and test HTTP requests with plain text and curl. Hurl can run fast automated integration tests.
Added 1 month ago
https://docs.bridgecrew.io/docs/what-is-bridgecrew
https://docs.bridgecrew.io/docs/what-is-bridgecrew
Added 1 month ago
https://stelligent.com/2017/11/16/codepipeline-dashboard/
https://stelligent.com/2017/11/16/codepipeline-dashboard/
Simple dashboard built for viewing pipeline metrics in AWS. Built using CloudWatch dashboards and metrics populated from CloudWatch events that CodePipeline triggers. Read more...
Watch 4 000 Apps Later: Expedia's Automated CI/CD Platform with Github Je
https://youtu.be/ry5GmEFa7P8
Kuldeep Chowhan, Principle Engineer at Expedia, shows us how Expedia built a scalable CI/CD platform on AWS using Github, Jenkins, Amazon EC2 Container servi...
Added 1 month ago