GitOops! Attacking and defending CI/CD pipelines.
As part of our ongoing quest to improve the status quo of CI/CD security, we present GitOops: a tool to map CI/CD attack paths in a GitHub organization.
Alex Kaskasoli
ci/cd
Alex Kaskasoli
Building a secure CI/CD pipeline for Terraform Infrastructure as Code
We created a model for automatically delivering infrastructure changes with robust security practices, and used it to build a secure Terraform CI/CD solution for AWS at OVO.
Chongyang Shi