Security

Niek Palm // Philips

Use GitHub Actions to promote and demote admins—it’s like sudo for GitHub!

Will Larson // Calm

We once relied on crossed fingers and optimism as our first line of defense, but there’s a better way.

Naveen Srinivasan & Brian Russell // OpenSSF

How to strengthen your software supply chain security, improve best practices, and build trust in your projects.

Ayden Férdeline

Understand what can go wrong and how to protect against the most likely scenarios.

Justin Trugman & Babitha Singh // Caregility

How Caregility prepared for third-party security audits with GitHub Advanced Security.

Justin Watts // Telus

It’s getting easier and more intuitive to catch mistakes before they spiral into disasters.

Lisa Tagliaferri, PhD // Chainguard

How to automate security and build confidence in your code.

Jonathan Leitschuh

Jonathan finds broken things and fixes them to make the world a more secure place.

Feross Aboukhadijeh

Feross on building OSS building blocks, rewriting the rules, and releasing obligations.

John Allspaw // Adaptive Capacity Labs

It’s a lot more nuanced than you might think.

Featured Article

The Rust programming language makes it easier to build safer software. What will it take to Rust All the Things?

Kevin Riggle

What do you say when the system is down?

Featured Article

Security pros talk about what keeps them up at night—and what they’re doing about it.