CargoWall eBPF Firewall

Version updated for https://github.com/code-cargo/cargowall-action to version v1.1.0.

• This action is used across all versions by 2 repositories.

Action Type

This is a Node action using Node version 24.

Go to the GitHub Marketplace to find the latest changes.

Action Summary

The CargoWall GitHub Action provides an eBPF-based network firewall for GitHub Actions runners, enabling kernel-level filtering of outbound network connections during CI/CD workflows. It enhances security by preventing supply chain attacks, blocking unauthorized data exfiltration, and controlling egress traffic based on customizable rules for hostnames, IP ranges, and DNS queries. Key features include Docker compatibility, DNS tunneling prevention, and optional sudo access restriction, ensuring robust and secure workflow execution.

What’s Changed

What’s Changed

• #41 Update Cargowall tov1.1.0 by @matthewdevenny in https://github.com/code-cargo/cargowall-action/pull/42
  • Adds support for wildcarding of hostnames

Full Changelog: https://github.com/code-cargo/cargowall-action/compare/v1.0.2...v1.1.0

• Code-Cargo
• GitHub Actions