Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Login
Top
New
Best
Ask
Show
Jobs
1.
▲
Show HN: Protect Your CI/CD from SolarWinds-Type Attacks with This Agent
(github.com/step-security)
15 points
varunsharma07
3 years ago
2 comments
2.
▲
Show HN: Publish from GitHub Actions using multi-factor authentication
(github.com/step-security)
72 points
varunsharma07
3 years ago
26 comments
3.
▲
Show HN: harden-runner: GitHub Action to prevent software supply chain attacks
(github.com/step-security)
11 points
varunsharma07
4 years ago
3 comments
4.
▲
Show HN: Scan your dev machine for AI agents, MCP servers, and IDE extensions
(github.com/step-security)
9 points
varunsharma07
3 months ago
discuss
5.
▲
Show HN: GitHub Actions Goat – Deliberately Vulnerable CI/CD Environment
(github.com/step-security)
7 points
kurmiashish
3 years ago
discuss
6.
▲
Show HN: Hands-on tutorials to learn about software supply chain security
(github.com/step-security)
3 points
varunsharma07
4 years ago
discuss
7.
▲
Show HN: Automatically restrict permissions for the GITHUB_TOKEN
(github.com/step-security)
3 points
varunsharma07
5 years ago
discuss
8.
▲
Show HN: Test Your Defenses with a Malware-Simulator Package
(github.com/step-security)
2 points
varunsharma07
4 years ago
1 comment
9.
▲
Show HN: AI-CodeWise – Transforming Code Reviews with AI-Powered Analysis
(github.com/step-security)
2 points
varunsharma07
3 years ago
discuss
10.
▲
Show HN: Secure your public GitHub repository with automated security fixes
(github.com/step-security)
2 points
varunsharma07
3 years ago
discuss
11.
▲
Nx compromised: malware uses Claude code CLI to explore the filesystem
(semgrep.dev)
493 points
neuroo
9 months ago
39 comments
12.
▲
Malicious versions of Nx and some supporting plugins were published
(github.com/nrwl)
443 points
longcat
9 months ago
433 comments