harden-runner
Security tool
Provides network egress filtering and runtime security for GitHub-hosted and self-hosted runners to protect against supply chain attacks and unauthorized access
Network egress filtering and runtime security for GitHub-hosted and self-hosted runners
621 stars
8 watching
50 forks
Language: TypeScript
last commit: 26 days ago
Linked from 1 awesome list
actionsegress-filteringgithub-actionshardeningnetwork-securityrunnersruntime-securitysecurity-hardeningsupply-chain-security
jakobthedev/awesome-devsecopsRelated projects:
| Repository | Description | Stars |
|---|---|---|
| step-security/github-actions-goat | An educational project demonstrating common security attacks and vulnerabilities in GitHub Actions CI/CD environments | 443 |
 boostsecurityio/poutine | Detects misconfigurations and vulnerabilities in software supply chains during build pipelines. | 229 |
 marshyski/quick-secure | Automates basic UNIX/Linux system security hardening and configuration | 415 |
 slashmili/ex_guard | A tool for automatically running tests on file system modifications | 84 |
 konstruktoid/hardening | A script to harden a Ubuntu server for security | 1,385 |
 chainguard-dev/clank | Detects imposter commits in GitHub Actions workflows to prevent unauthorized changes | 22 |
 globocom/huskyci | Automated security testing and analysis tool | 576 |
 cycodelabs/cimon-action | A runtime security solution that monitors and mitigates attacks in software supply chains | 87 |
 zerotier/github-action | Automates ZeroTier network integration into CI/CD workflows by installing and authorizing runners. | 49 |
 papermtn/gitlab-watchman | Detects exposed secrets and personal data in GitLab repositories | 196 |
 legit-labs/legitify | Automates vulnerability detection and remediation across GitHub and GitLab assets to strengthen software security posture. | 774 |
 wireghoul/graudit | A tool to identify potential security flaws in source code using static analysis and regular expressions. | 1,538 |
 jenkinsci/jenkinsfile-runner-github-actions | Enables Jenkinsfile execution within GitHub Actions using embedded Jenkins Single-shot masters | 200 |
 prompt-security/ps-fuzz | An interactive tool that tests and hardens the security of system prompts used in GenAI applications against various attacks. | 401 |
 checkmarx/chainjacking | A tool to identify susceptible dependencies in Go projects | 57 |