harden-runner
Security tool
Provides network egress filtering and runtime security for GitHub-hosted and self-hosted runners to protect against supply chain attacks and unauthorized access
Network egress filtering and runtime security for GitHub-hosted and self-hosted runners
637 stars
8 watching
51 forks
Language: TypeScript
last commit: 4 months ago
Linked from 1 awesome list
actionsegress-filteringgithub-actionshardeningnetwork-securityrunnersruntime-securitysecurity-hardeningsupply-chain-security
jakobthedev/awesome-devsecopsRelated projects:
| Repository | Description | Stars |
|---|---|---|
| step-security/github-actions-goat | An educational project demonstrating common security attacks and vulnerabilities in GitHub Actions CI/CD environments | 445 |
 boostsecurityio/poutine | Detects misconfigurations and vulnerabilities in software supply chains during build pipelines. | 239 |
 marshyski/quick-secure | Automates UNIX/Linux system hardening and security configuration | 415 |
 slashmili/ex_guard | A tool for automatically running tests on file system modifications | 84 |
 konstruktoid/hardening | A script to harden a Ubuntu server for security | 1,394 |
 chainguard-dev/clank | Detects imposter commits in GitHub Actions workflows to prevent unauthorized changes | 23 |
 globocom/huskyci | Automated security testing and analysis tool | 579 |
 cycodelabs/cimon-action | A runtime security solution that monitors and mitigates attacks in software supply chains | 91 |
 zerotier/github-action | Automates ZeroTier network integration into CI/CD workflows by installing and authorizing runners. | 49 |
 papermtn/gitlab-watchman | Detects exposed secrets and personal data in GitLab repositories | 195 |
 legit-labs/legitify | Automates vulnerability detection and remediation across GitHub and GitLab assets to strengthen software security posture. | 782 |
 wireghoul/graudit | A tool to identify potential security flaws in source code using static analysis and regular expressions. | 1,548 |
 jenkinsci/jenkinsfile-runner-github-actions | Enables Jenkinsfile execution within GitHub Actions using embedded Jenkins Single-shot masters | 201 |
 prompt-security/ps-fuzz | An interactive tool that tests and hardens the security of system prompts used in GenAI applications against various attacks. | 419 |
 checkmarx/chainjacking | A tool to identify susceptible dependencies in Go projects | 56 |