Confirmed users
1,364
edits
GitHub/Repository Security/GitHub Workflows & Actions: Difference between revisions
GitHub/Repository Security/GitHub Workflows & Actions (view source)
Revision as of 23:50, 10 July 2024
, 10 July 2024formatting fix
Cknowles-moz (talk | contribs) (→Scanning Tools: Changed the install link to point to actions install rather than app) |
(formatting fix) |
||
| Line 18: | Line 18: | ||
== Resources and tools == | == Resources and tools == | ||
There are a number of ways to implement the recommendations above. Here are some suggestions - other tools may be available and a better fit. | There are a number of ways to implement the recommendations above. Here are some suggestions - other tools may be available and a better fit. (See [[GitHub#How_do_I_hook_up_a_new_GitHub_Actions_or_3rd_party_application_to_a_repository_in_the_mozilla_org.3F|requesting installations]] for more information.) | ||
=== Learning about Workflow security issues === | |||
* Read GitHub’s [https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions security hardening for actions]. | * Read GitHub’s [https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions security hardening for actions]. | ||