Security best practices for authors of GitHub Actions
Improve your GitHub Action’s security posture by securing your source repository, protecting your maintainers, and making it easy to report security incidents.
GitHub Blog Search
Search Results for: GitHub Actions
GitHub Actions – Enforcing workflow scope when creating a release
GitHub Actions - Enforcing workflow scope when creating a release
Run your ML workloads on GitHub Actions with GPU runners
Run your ML workloads on GitHub Actions with GPU runners
Accelerate your CI/CD with Arm-based hosted runners in GitHub Actions
Accelerate your CI/CD with Arm-based hosted runners in GitHub Actions
GitHub Actions: NODE_OPTIONS is now restricted from GITHUB_ENV
Due to security restrictions, users can no longer use GITHUB_ENV to set the NODE_OPTIONS environment variable in their workflows. Developers who have NODE_OPTIONS set as an environment variable will now…
GitHub Actions: Apple silicon (M1) macOS runners are now available in public beta!
GitHub Actions: Apple silicon (M1) macOS runners are now available in public beta!
Introducing the new, Apple silicon powered M1 macOS larger runner for GitHub Actions
Speed up your GitHub Actions jobs on macOS with all new, faster Apple silicon powered M1 macOS larger runner for arm64.
How GitHub uses GitHub Actions and Actions larger runners to build and test GitHub.com
Recently, we’ve been working to make our CI experience better by leveraging the newly released GitHub feature, Actions larger runners, to run our CI.
GitHub Actions: Transitioning from Node 16 to Node 20
GitHub Actions: Transitioning from Node 16 to Node 20
Migrate Bamboo and Bitbucket Pipeline to GitHub Actions
Migrate Bamboo and Bitbucket Pipeline to GitHub Actions
GitHub Actions – Updates to GITHUB_REF and github.ref
GitHub Actions - Updates to GITHUB_REF and github.ref
GitHub Actions: Review network access settings for the self-hosted runners
GitHub Actions: Review network access settings for the self-hosted runners
Four tips to keep your GitHub Actions workflows secure
Researchers from Purdue and NCSU have found a large number of command injection vulnerabilities in the workflows of projects on GitHub. Follow these four tips to keep your GitHub Actions workflows secure.
GitHub Actions: Required Workflows will move to Repository Rules
GitHub Actions: Required Workflows will move to Repository Rules
GitHub Actions – New dashboard view for deployments across environments (public beta)
Today, we are announcing public beta of the new experience for deployments across environments. :tada: Developers and DevOps managers can now view and track the full history of deployments in…
GitHub Actions: Update on save-state and set-output commands
GitHub Actions: Update on save-state and set-output commands
GitHub Actions: Removal of Node12 from the Actions runner
GitHub Actions: Removal of Node12 from the Actions runner
GitHub Actions – OIDC integration with AWS no longer requires pinning of intermediate TLS certificates
GitHub Actions - OpenId Connect (OIDC) integration with AWS is now optimized to avoid pinning any intermediary certificate thumbprints. While configuring GitHub as an OIDC IdP (ID Provider), AWS now…
GitHub Actions – Actions Runner General availability
GitHub Actions - Actions Runner General availability
GitHub Actions – Update on OIDC integration with AWS
We have received customers reporting errors with Actions’ OIDC integration with AWS. This happens for customers who are pinned to a single intermediary thumbprint from the Certificate Authority (CA) of…