GitHub CI/CD Pipeline

AI in CI/CD pipelines can be tricked into behaving badly

Malicious content in issues or pull requests can trick AI agents in CI/CD workflows into running privileged commands in an ...

TheServerSide

Jenkins GitHub Integration for CI/CD Pipelines example

The ability of Jenkins to pull code from GitHub The ability of GitHub to trigger Jenkins build jobs The first feature, namely the ability to pull code from GitHub is made possible through the Jenkins ...

CSOonline

Researchers demo new CI/CD attack techniques in PyTorch supply-chain

The proof of concept shows it's possible to upload malicious PyTorch releases to GitHub by exploiting insecure misconfigurations in GitHub Actions. A pair of security researchers managed to infiltrate ...

Visual Studio Magazine

Hardening CI/CD: Essential Strategies to Mitigate Security Risks

As DevOps practices mature and Continuous Integration/Continuous Deployment (CI/CD) pipelines become more deeply embedded in the software delivery lifecycle, the ...

Some results have been hidden because they may be inaccessible to you

Show inaccessible results