Runner Guard

Version updated for https://github.com/Vigilant-LLC/runner-guard to version v3.1.5.

• This action is used across all versions by ? repositories.

Action Type

This is a Composite action.

Go to the GitHub Marketplace to find the latest changes.

Action Summary

Runner Guard is a CI/CD supply chain security scanner designed to detect and mitigate vulnerabilities in GitHub Actions workflows. It automates the detection of pipeline injection attacks, unpinned dependencies, AI configuration poisoning, and supply chain threats, while also scanning dependency pipelines for security issues. Key features include vulnerability reporting, auto-fixing issues, continuous monitoring of dependencies, and generating security scores to enhance workflow integrity.

What’s Changed

Changelog

• 025efb26fa44000131d96b036ed1e17b2ff0a049 Add CanisterWorm/CanisterSprawl and Strapi-Cryptosteal IOCs, clean external references (v3.1.5)
• 208650943cd89560b2bd61da9ee61f5a4d9c188e Update GitHub Action SHA for v3.1.4

• Vigilant-LLC
• GitHub Actions