Play AppSec WarGames
Want to skill-up in secure coding and AppSec? Try SecDim Wargames to learn how to find, hack and fix security vulnerabilities inspired by real-world incidents.
Free GitHub Actions Challenge for tj-actions & reviewdog Incidents
In light of the recent tj-action and reviewdog GitHub Actions security incidents, we’ve made our “Improper Artifact Integrity Validation” CI/CD challenge for GitHub Actions completely free to access 
.
Tampering with GitHub Actions has long been recognised as a critical threat. While it’s relatively straightforward to mitigate, any oversight can have disastrous consequences—something these recent incidents sadly underscore.
Let’s learn from real-world scenarios and avoid making the same mistakes.
Try the challenge here:
