Search 6,000+ CA Community College Courses
Vulnerabilities and Misconfigurations in GitHub Actions: Security Risks and Mitigations

Vulnerabilities and Misconfigurations in GitHub Actions: Security Risks and Mitigations

fwd:cloudsec via YouTube Direct link

Sample workflow

3 of 17
Previous
Next

3 of 17

Sample workflow

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Vulnerabilities and Misconfigurations in GitHub Actions: Security Risks and Mitigations

Automatically move to the next video in the Classroom when playback concludes
  1. 1 Intro
  2. 2 What is GitHub Actions (GHA) tl;dr
  3. 3 Sample workflow
  4. 4 User Controlled event triggers
  5. 5 User Controlled Input
  6. 6 User Controlled Runtime files
  7. 7 Code Execution Impact
  8. 8 Supply Chain Exploit - Example
  9. 9 Supply Chain Exploit - Securing
  10. 10 AWS OIDC + GitHub Actions
  11. 11 OIDC Setup in AWS
  12. 12 OIDC-GHA Setup
  13. 13 OIDC & GHA Theory
  14. 14 OIDC & GHA Vulnerability - Example
  15. 15 OIDC & GHA Vulnerability - Highlights
  16. 16 Securing your OIDC & GHA
  17. 17 Conclusion - Securing your GHA

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.