Bypassing Branch Protections with Github Actions (CI/CD)
https://jh.live/halborn || In this video we’ll dig more into Continuous Integration and Continuous Deployment (CI/CD) with Github Actions -- with indirect pipeline poisoning and bypassing branch protection, we'll uncover what modern security mechanisms should be in place with online repositories!
You can learn more about Carlos Polop, Ignacio Dominguez or the security audits and assessments that HALBORN performs at https://jh.live/halborn
00:00 - Branch Protection
00:25 - Introductions
02:34 - Demo Start
07:06 - GitHub Actions PR permission setting
08:27 - Attack Start
12:03 - A note about being repository admin
14:46 - Reset and re-attack
16:46 - Q&A session
18:44 - Wrap up
🔥 YOUTUBE ALGORITHM ➡ Like, Comment, & Subscribe!
🙏 SUPPORT THE CHANNEL ➡ https://jh.live/patreon
🤝 SPONSOR THE CHANNEL ➡ https://jh.live/sponsor
🌎 FOLLOW ME EVERYWHERE ➡ https://jh.live/discord ↔ https://jh.live/twitter ↔ https://jh.live/linkedin ↔ https://jh.live/instagram ↔ https://jh.live/tiktok
💥 SEND ME MALWARE ➡ https://jh.live/malware
Watch video Bypassing Branch Protections with Github Actions (CI/CD) online without registration, duration hours minute second in high quality. This video was added by user John Hammond 14 June 2023, don't forget to share it with your friends and acquaintances, it has been viewed on our site 11,957 once and liked it 387 people.