GitOops! Attacking and defending CI/CD pipelines.
As part of our ongoing quest to improve the status quo of CI/CD security, we present GitOops: a tool to map CI/CD attack paths in a GitHub organization.

As part of our ongoing quest to improve the status quo of CI/CD security, we present GitOops: a tool to map CI/CD attack paths in a GitHub organization.
How we developed Domain Protect, an open source tool for automated scanning of cloud infrastructure for subdomains vulnerable to takeover.
By Chongyang Shi [https://scy.email/], Alex Kaskasoli [https://alex.kaskaso.li/] , Ignacio Dominguez [https://twitter.com/congon4tor], and Emily Young [https://twitter.com/Emisaurus_hex] Following our culture of Technical Autonomy [https://tech.ovoenergy.com/ovo-tech-culture/#technicalautonomy], te…
We created a model for automatically delivering infrastructure changes with robust security practices, and used it to build a secure Terraform CI/CD solution for AWS at OVO.
Here at OVO we make use of managed services that allow us to run less software ourselves, and play pivotal roles in achieving CI/CD; services which are firmly placed on our Paved Road [https://conferences.oreilly.com/oscon/oscon-tx/public/schedule/detail/57097]. Two of the most prevalent managed se…