The recent Trivy GitHub Actions security incident got me thinking more seriously about the security model around CI systems. Most teams spend a lot of time thinking about dependency security, but I increasingly think GitHub Actions workflows deserve to be viewed through the exact same lens. In some cases, they may actually represent a larger […] The post Is GitHub…
#github actions
3 posts
Yesterday
26 Nov 2025
Join us live on December 9 to explore the newest, most practical ways to modernize your .NET apps with Azure, AI, and powerful agentic tooling. The post .NET Day on Agentic Modernization Coming Soon appeared first on .NET Blog.
22 Sept 2025
Announcing Trusted Publishing on NuGet.org - a safer way to publish packages using short-lived tokens instead of long-lived API keys The post New Trusted Publishing enhances security on NuGet.org appeared first on .NET Blog.