#github-actions

[ follow ]
#cicd-security #cicd #automation #devops #supply-chain #npm #sbom #secret-scanning #canary-deployments
Software development
fromInfoWorld
1 hour ago

10 MCP servers for devops

Model Context Protocol enables AI assistants to perform multi-step devops tasks—Git, CI/CD, IaC, observability—via standardized servers like GitHub's MCP.
#cicd-security
fromInfoWorld
2 days ago
Information security

AI in CI/CD pipelines can be tricked into behaving badly

AI agents in CI/CD pipelines can be manipulated via crafted GitHub issue or pull request text to execute high-privilege commands and disclose secrets.
fromInfoQ
7 months ago
DevOps

Compromised GitHub Action Highlights Risks in CI/CD Supply Chains

A popular GitHub Action was compromised, exposing critical security weaknesses in the CI/CD pipeline of open-source Actions.
more#cicd-security
#zig
more#zig
#supply-chain
more#supply-chain
#git-sync
more#git-sync
#sbom
more#sbom
Information security
fromMedium
2 months ago

From Jenkins to GitHub Actions: Evolving a Secure DevSecOps Pipeline with Canary Deployments

Migrate CI to GitHub Actions, enhance secrets security, adopt canary progressive delivery, and expose apps via Ingress to create a modern, resilient GitOps CI/CD pipeline.
#gemini-cli
fromZDNET
2 months ago
Software development

Google's new Jules Tools is very cool - how I'm using it and other Gemini AI CLIs

fromZDNET
2 months ago
Software development

Google's new Jules Tools is very cool - how I'm using it and other Gemini AI CLIs

more#gemini-cli
Information security
fromfaun.pub
2 months ago

From Jenkins to GitHub Actions: Evolving a Secure DevSecOps Pipeline with Canary Deployments

Migrate CI to GitHub Actions, strengthen security and secrets management, adopt canary progressive delivery, and expose applications via NGINX Ingress for scalable DevSecOps pipelines.
Information security
fromMedium
2 months ago

From Jenkins to GitHub Actions: Evolving a Secure DevSecOps Pipeline with Canary Deployments

Migrate CI from Jenkins to GitHub Actions; strengthen secrets and security; adopt canary progressive delivery; use Ingress to expose applications for scalable DevSecOps pipelines.
Software development
fromGitHub
3 months ago

GitHub - azat-io/actions-up: Interactive CLI tool to update GitHub Actions to latest versions with SHA pinning

Automatically discover, update, and SHA-pin GitHub Actions across workflows for secure, reproducible CI with interactive batch updates and CI integration.
DevOps
fromInfoQ
3 months ago

AWS Lambda Adds Support for GitHub Actions

AWS Lambda supports GitHub Actions for declarative, OIDC-authenticated deployments of functions via .zip or container images, including S3 support and configurable function settings.
fromPycoders
5 months ago

PyCoder's Weekly | Issue #686

This blog introduces free-threaded Python updates, GPU programming advancements, and GitHub Actions for enhanced DevOps, paving the way for improved Python performance and collaboration.
Python
Software development
fromRealpython
5 months ago

Python Continuous Integration and Deployment Using GitHub Actions - Real Python

GitHub Actions is essential for Python developers to automate workflows and adapt software projects to evolving demands.
#cicd
fromDevOps.com
6 months ago
DevOps

Streamlining CI/CD: Building Efficient Pipelines With GitHub Actions for Modern DevOps - DevOps.com

fromDevOps.com
6 months ago
DevOps

Streamlining CI/CD: Building Efficient Pipelines With GitHub Actions for Modern DevOps - DevOps.com

more#cicd
fromHackernoon
5 years ago

Waiting: The Subtle Art That You Should Master | HackerNoon

Waiting in Kubernetes can seem counterintuitive, but managing service dependencies through startup probes is essential for ensuring applications connect seamlessly during initialization.
DevOps
[ Load more ]