HK
Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Top
New
Best
Ask
Show
Jobs
Request
1.
▲
Show HN: Protect Your CI/CD from SolarWinds-Type Attacks with This Agent
github.com/step-security
2 comments
3 years ago
varunsharma07
15 points
2.
▲
Show HN: Publish from GitHub Actions using multi-factor authentication
github.com/step-security
26 comments
4 years ago
varunsharma07
72 points
3.
▲
Show HN: harden-runner: GitHub Action to prevent software supply chain attacks
github.com/step-security
3 comments
4 years ago
varunsharma07
11 points
4.
▲
Show HN: Scan your dev machine for AI agents, MCP servers, and IDE extensions
github.com/step-security
discuss
3 months ago
varunsharma07
9 points
5.
▲
Show HN: GitHub Actions Goat – Deliberately Vulnerable CI/CD Environment
github.com/step-security
discuss
3 years ago
kurmiashish
7 points
6.
▲
Show HN: Hands-on tutorials to learn about software supply chain security
github.com/step-security
discuss
4 years ago
varunsharma07
3 points
7.
▲
Show HN: Automatically restrict permissions for the GITHUB_TOKEN
github.com/step-security
discuss
5 years ago
varunsharma07
3 points
8.
▲
Show HN: Test Your Defenses with a Malware-Simulator Package
github.com/step-security
1 comment
4 years ago
varunsharma07
2 points
9.
▲
Show HN: AI-CodeWise – Transforming Code Reviews with AI-Powered Analysis
github.com/step-security
discuss
3 years ago
varunsharma07
2 points
10.
▲
Show HN: Secure your public GitHub repository with automated security fixes
github.com/step-security
discuss
3 years ago
varunsharma07
2 points
11.
▲
Nx compromised: malware uses Claude code CLI to explore the filesystem
semgrep.dev
39 comments
10 months ago
neuroo
493 points
12.
▲
Malicious versions of Nx and some supporting plugins were published
github.com/nrwl
433 comments
10 months ago
longcat
443 points