#github-actions
#github-actions

4 years ago

DevOps

Waiting: The Subtle Art That You Should Master | HackerNoon

Managing service dependencies in Kubernetes using startup probes ensures smoother application startup.

#supply-chain-attack

DevOps

GitHub Supply Chain Breach: Coinbase Attack Exposes 218 Repositories, Leaks CI/CD Secrets

A supply chain attack involving GitHub Actions led to the leakage of secrets across multiple repositories, but the impact was less severe than initially feared.

fromInfoQ

2 weeks ago

DevOps

Compromised GitHub Action Highlights Risks in CI/CD Supply Chains

A popular GitHub Action was compromised, exposing critical security weaknesses in the CI/CD pipeline of open-source Actions.

fromTechzine Global

DevOps

GitHub Actions targeted again in supply chain attack

A supply chain attack via GitHub Actions compromised thousands of repositories and CI/CD secrets, originating from a previously exploited GitHub Action.

DevOps

CISA Warns of Active Exploitation in GitHub Action Supply Chain Compromise

A high-severity vulnerability in tj-actions/changed-files enables remote access to sensitive data, raising concerns about supply chain security.

DevOps

GitHub Supply Chain Breach: Coinbase Attack Exposes 218 Repositories, Leaks CI/CD Secrets

A supply chain attack involving GitHub Actions led to the leakage of secrets across multiple repositories, but the impact was less severe than initially feared.

fromInfoQ

2 weeks ago

DevOps

Compromised GitHub Action Highlights Risks in CI/CD Supply Chains

A popular GitHub Action was compromised, exposing critical security weaknesses in the CI/CD pipeline of open-source Actions.

fromTechzine Global

DevOps

GitHub Actions targeted again in supply chain attack

A supply chain attack via GitHub Actions compromised thousands of repositories and CI/CD secrets, originating from a previously exploited GitHub Action.

DevOps

CISA Warns of Active Exploitation in GitHub Action Supply Chain Compromise

A high-severity vulnerability in tj-actions/changed-files enables remote access to sensitive data, raising concerns about supply chain security.

more#supply-chain-attack

#cicd

JavaScript

How to Set Up GitHub Actions and PyPI Integration for Python Projects | HackerNoon

Set up CI/CD on GitHub to maintain code integrity and automate publishing to PyPI.

fromfaun.pub

JavaScript

Securely Scale CI/CD with Self-Hosted GitHub Runners on AWS

Organizations using GitHub Actions face significant limitations with hosted runners that can hamper CI/CD efficiency, particularly for large-scale projects.

DevOps

How to Setup a CI/CD Pipeline with GitHub Actions | HackerNoon

CI/CD simplifies the deployment process, enabling developers to focus on feature creation rather than repetitive tasks.

JavaScript

How to Send Detailed Slack Notifications From GitHub Actions | HackerNoon

GitHub Actions allows automation of workflows, including sending Slack notifications for repository events, enhancing communication and efficiency.

fromAmazon Web Services

DevOps

Simplify Amazon EKS Deployments with GitHub Actions and AWS CodeBuild | Amazon Web Services

Using GitHub Actions to automate CI/CD workflows with AWS CodeBuild & AWS CodePipeline for Amazon EKS deployments.

fromRealpython

JavaScript

Continuous Integration and Deployment for Python With GitHub Actions - Real Python

GitHub Actions enables Python developers to automate workflows and maintain software quality through effective CI/CD practices.

JavaScript

How to Set Up GitHub Actions and PyPI Integration for Python Projects | HackerNoon

Set up CI/CD on GitHub to maintain code integrity and automate publishing to PyPI.

fromfaun.pub

JavaScript

Securely Scale CI/CD with Self-Hosted GitHub Runners on AWS

Organizations using GitHub Actions face significant limitations with hosted runners that can hamper CI/CD efficiency, particularly for large-scale projects.

DevOps

How to Setup a CI/CD Pipeline with GitHub Actions | HackerNoon

CI/CD simplifies the deployment process, enabling developers to focus on feature creation rather than repetitive tasks.

JavaScript

How to Send Detailed Slack Notifications From GitHub Actions | HackerNoon

GitHub Actions allows automation of workflows, including sending Slack notifications for repository events, enhancing communication and efficiency.

fromAmazon Web Services

DevOps

Simplify Amazon EKS Deployments with GitHub Actions and AWS CodeBuild | Amazon Web Services

Using GitHub Actions to automate CI/CD workflows with AWS CodeBuild & AWS CodePipeline for Amazon EKS deployments.

fromRealpython

JavaScript

Continuous Integration and Deployment for Python With GitHub Actions - Real Python

GitHub Actions enables Python developers to automate workflows and maintain software quality through effective CI/CD practices.

more#cicd

fromTechzine Global

3 months ago

DevOps

Microsoft warns developers: 'update .NET installation link'

Microsoft is transitioning .NET development resources away from azureedge.net due to the impending closure of Edgio, affecting many development pipelines.

#python

fromDEV Community

4 months ago

JavaScript

Trusted publishing It has never been easier to publish your python packages

Python package publishing is now simpler and more secure with trusted publishing and GitHub Actions.

fromPythonbytes

Python

A Simple Game

Run GitHub Actions locally using act for fast feedback and as a local task runner.

Annotate args and kwargs in Python easily with PEP guidelines.

fromDEV Community

4 months ago

JavaScript

Trusted publishing It has never been easier to publish your python packages

Python package publishing is now simpler and more secure with trusted publishing and GitHub Actions.

fromPythonbytes

Python

A Simple Game

Run GitHub Actions locally using act for fast feedback and as a local task runner.

Annotate args and kwargs in Python easily with PEP guidelines.

more#python

fromDevOps.com

fromThe NodeSource Blog - Node.js Tutorials, Guides, and Updates

DevOps

Curtailing Software Automation Tool License Costs by Curbing License Needs - DevOps.com

CI pipelines can help optimize automation tool usage and eliminate individual license requirements for test execution.

1 year ago

JavaScript

N|Solid: Node.js Compatibility Proven through Fastify CI Integration

NodeSource aims to prove N|Solid's compatibility with Node.js ecosystems through practical integration and performance enhancement.

fromDEV Community

Python

Speed up CI with uv

Integrating uv can speed up linting and testing on GitHub Actions significantly.

#artifact-attestations

DevOps

GitHub Artifact Attestions now generally available

Artifact Attestations ensure integrity of artifacts in GitHub Actions by linking them to source code and build instructions.

DevOps

GitHub Artifact Attestations sign and verify software artifacts

GitHub introduced Artifact Attestations for securing software supply chains in GitHub Actions.

DevOps

GitHub Artifact Attestions now generally available

Artifact Attestations ensure integrity of artifacts in GitHub Actions by linking them to source code and build instructions.

more#artifact-attestations

DevOps

GitHub Artifact Attestations sign and verify software artifacts

GitHub introduced Artifact Attestations for securing software supply chains in GitHub Actions.

#automation

fromMedium

JavaScript

GitHub Actions Explained

GitHub Actions automate workflows for CI/CD pipelines efficiently, simplifying development processes and enabling continuous improvement.

JavaScript

Maximize Vercel's FREE Plan: Enable Auto Deployment for All Members | HackerNoon

Vercel's recent pricing change restricts deployment triggers to project creators only, charging $20 for additional members.

fromSmashing Magazine

7 months ago

JavaScript

How To Create A Weekly Google Analytics Report That Posts To Slack - Smashing Magazine

Automating Google Analytics reporting enhances accessibility and visibility of page performance metrics across the organization.

fromMedium

JavaScript

GitHub Actions Explained

GitHub Actions automate workflows for CI/CD pipelines efficiently, simplifying development processes and enabling continuous improvement.

JavaScript

Maximize Vercel's FREE Plan: Enable Auto Deployment for All Members | HackerNoon

Vercel's recent pricing change restricts deployment triggers to project creators only, charging $20 for additional members.

fromSmashing Magazine

7 months ago

JavaScript

How To Create A Weekly Google Analytics Report That Posts To Slack - Smashing Magazine

Automating Google Analytics reporting enhances accessibility and visibility of page performance metrics across the organization.

more#automation

fromInfoQ

Running

How GitHub iOS Team Leveraged Apple-Silicon Actions Runners to Reduce Testing Time

GitHub iOS team adopted Apple Silicon macOS runners for faster builds and refactored workflow for parallelism.

fromDevOps.com

Information security

Report Surfaces Thousands of Potential Vulnerabilities in GitHub Workflows - DevOps.com

DevSecOps teams on GitHub often utilize insecure workflows, including untrusted input, code execution, and artifacts. 3rd party actions pose risks due to limited cybersecurity expertise.

JavaScript

Teaching High School Students Software Engineering: Project Implementation | HackerNoon

The project implementation emphasized learning through creating and deploying HTML validator, link checker, and unit tests, focusing on JETSCAPE XML reader validation.

fromAmazon Web Services