Version updated for https://github.com/Vigilant-LLC/runner-guard to version v2.5.2. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Runner Guard is a security-focused GitHub Action that performs static taint analysis on CI/CD pipeline workflows to detect source-to-sink vulnerabilities, such as injection attacks and supply chain steganography. It helps identify critical misconfigurations, attacker-controlled inputs, invisible Unicode payloads, and other malicious patterns in workflows and associated files, mitigating risks like credential theft, repository compromise, and automated AI-driven exploits.

Version updated for https://github.com/Vigilant-LLC/runner-guard to version v2.5.1. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Runner Guard is a security tool designed to perform static taint analysis on GitHub Actions workflows, identifying vulnerabilities that could enable source-to-sink attacks, such as injection paths from untrusted inputs to sensitive operations. It automates the detection of misconfigurations, AI configuration injection attacks, and supply chain threats like invisible Unicode payloads, helping developers secure CI/CD pipelines against advanced exploitation techniques.

Version updated for https://github.com/Vigilant-LLC/runner-guard to version v2.5.0. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Runner Guard is a security-focused GitHub Action that performs static taint analysis on CI/CD pipeline workflows to detect source-to-sink vulnerabilities and prevent injection attacks. It identifies risks such as malicious code execution, secret exfiltration, and supply chain threats, including invisible Unicode payload techniques.

Version updated for https://github.com/Vigilant-LLC/runner-guard to version v2.4.9. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Runner Guard is a security tool designed to analyze GitHub Actions workflows for vulnerabilities caused by misconfigured CI/CD pipelines. It automates the detection of injection paths from untrusted inputs (e.g., forked repositories or branch names) to high-risk operations, such as secret access and shell execution, as well as identifying supply chain attacks like invisible Unicode payloads.

Version updated for https://github.com/Vigilant-LLC/runner-guard to version v2.4.8. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Runner Guard is a security-focused GitHub Action designed to identify and mitigate source-to-sink vulnerabilities in CI/CD pipelines, particularly those stemming from misconfigured workflows in GitHub Actions. It automates static taint analysis to detect injection paths that could allow malicious actors to exploit privileged contexts, exfiltrate secrets, or execute unauthorized code.

Version updated for https://github.com/Vigilant-LLC/runner-guard to version v2.4.3. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Runner Guard is a security-focused GitHub Action that performs static taint analysis on CI/CD pipeline workflow files to detect vulnerabilities such as source-to-sink injection paths and supply chain steganography. It automates the identification of dangerous configurations, attacker-controlled inputs, and hidden payloads (e.

Version updated for https://github.com/Vigilant-LLC/runner-guard to version v2.4.1. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Runner Guard is a security-focused GitHub Action that performs static taint analysis on CI/CD workflow files to detect vulnerabilities where attacker-controlled inputs (e.g., fork code, branch names, PR metadata) can lead to dangerous operations like secret exfiltration, shell execution, or supply chain attacks.

Version updated for https://github.com/Vigilant-LLC/runner-guard to version v2. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Runner Guard is a vulnerability scanner designed to analyze GitHub Actions workflow files for security weaknesses, such as injection paths and invisible Unicode payloads. It automates the detection of critical CI/CD pipeline misconfigurations and supply chain attacks, including AI-driven exploits and steganographic techniques.