How to scan GitHub Actions workflows for security issues

In the last few months, we secured 75+ GitHub Actions workflows in open source projects, disclosing 90+ different vulnerabilities. Out of this research we produced new support for workflows in Code...

By · · 1 min read
How to scan GitHub Actions workflows for security issues

Source: The GitHub Blog

In the last few months, we secured 75+ GitHub Actions workflows in open source projects, disclosing 90+ different vulnerabilities. Out of this research we produced new support for workflows in CodeQL, empowering you to secure yours.