Dark Reading

Artifact Poisoning in GitHub Actions Imports Malware via Software Pipelines

An attacker submitting changes to an open source repository on GitHub could cause downstream software projects that include the latest version of a component to compile updates with malicious code.
TheServerSide

A Jenkins YAML pipeline example

Community driven content discussing all aspects of software development from DevOps to design patterns. Don’t get too excited. Official Jenkins YAML build job support isn’t here yet. It’s available if ...
Bleeping Computer

GitHub Actions artifacts found leaking auth tokens in popular projects

Multiple high-profile open-source projects, including those from Google, Microsoft, AWS, and Red Hat, were found to leak GitHub authentication tokens through GitHub Actions artifacts in CI/CD ...
TheServerSide

Free GH-200 GitHub Actions Exam Questions and Answers

Community driven content discussing all aspects of software development from DevOps to design patterns. Over the past few months I have been helping professionals who were displaced by the AI ...
Visual Studio Magazine

Building and Deploying a .NET 9 App Using Azure, Bicep and GitHub Actions

.NET 9 and its ASP.NET Core 9 web-dev framework are coming in November with the latest technology and tools for building modern web apps. And these days, that usually means leveraging the cloud and ...