Securing your CI/CD pipelines is a must in today’s world where supply-chain hacks are on the rise. Adrien Pessu’s presentation breaks down the biggest weak spots—think rogue dependencies, exposed secrets and over-privileged workflows—and why you need to lock them down ASAP.
Using GitHub Actions as a playground, you’ll get hands-on with battle-tested best practices (secret management, fine-grained permissions and action vetting) plus advanced tricks to spot threats early and slam the door on intruders.
Watch on YouTube
Top comments (0)