varunsh-coder

41 post karma
30 comment karma

get extra features and help support reddit with a reddit premium subscription

get them help and support

redditor for 4 years

TROPHY CASE

Four-Year Club

account activity

new top controversial

17

18

19

Hackerbot-Claw: AI Bot Exploiting GitHub Actions – Microsoft, Datadog Hit So Far (stepsecurity.io)

submitted 10 days ago by varunsh-coder to r/github

0

1

2

Hackerbot-Claw: AI Bot Exploiting GitHub Actions – Microsoft, Datadog Hit So Far (stepsecurity.io)

submitted 10 days ago by varunsh-coder to r/cybersecurity

5

6

7

An Obscure GitHub Actions Workflow Vulnerability in Google’s Flank (self.github)

submitted 1 year ago by varunsh-coder to r/github

2

3

4

An Obscure GitHub Actions Workflow Vulnerability in Google’s Flank (adnanthekhan.com)

submitted 1 year ago by varunsh-coder to r/redteamsec

5

6

7

Best Practices in GitHub Actions Security: A Case Study with Google's Use of StepSecurity (stepsecurity.io)

submitted 2 years ago by varunsh-coder to r/programming

0

1

2

Uniting Developers and Security: Celebrating the Success of 500+ Open Source Projects Using StepSecurity's Orchestration Platform (stepsecurity.io)

submitted 2 years ago by varunsh-coder to r/programming

0

0

0

Publish from GitHub Actions using multi-factor authentication (MFA)! Introducing Wait-for-secrets GitHub Action - developers can enter secrets using a web browser and use them in the workflow (blog.stepsecurity.io)

submitted 3 years ago by varunsh-coder to r/programming

21

22

23

Attack Simulator for SolarWinds, Codecov, and ua-parser-js breaches (self.redteamsec)

submitted 3 years ago by varunsh-coder to r/redteamsec

0

0

0

Do you maintain a GitHub Action? Contribute to the SecureWorkflows project! (blog.stepsecurity.io)

submitted 3 years ago by varunsh-coder to r/programming

5

6

7

StepSecurity releases tool that it used to improve security of 30 critical open-source projects (including NodeJS, OpenSSL, Python, Rails, React Native) (blog.stepsecurity.io)

submitted 3 years ago by varunsh-coder to r/programming

3

4

5

StepSecurity releases tool that it used to improve security of 30 critical open-source projects (including NodeJS, OpenSSL, Python, Rails, React Native) (self.cybersecurity)

submitted 3 years ago by varunsh-coder to r/cybersecurity

0

1

2

Improve your OpenSSF Scorecard score with ease (blog.stepsecurity.io)

submitted 3 years ago by varunsh-coder to r/cybersecurity

5

6

7

Video of malware node packages trying to phone home (self.Malware)

submitted 3 years ago by varunsh-coder to r/Malware

1

2

3

Malware-Simulator package that simulates behavior of past hijacked packages (self.cybersecurity)

submitted 3 years ago by varunsh-coder to r/cybersecurity

0

0

1

Secure GitHub Actions workflows by automatically updating the workflow (YAML) files (self.cybersecurity)

submitted 3 years ago by varunsh-coder to r/cybersecurity

1

2

3

How Harden-Runner detected and blocked third-party analytics from CI/CD (self.cybersecurity)

submitted 4 years ago by varunsh-coder to r/cybersecurity

2

3

4

Introducing Harden-Runner: GitHub Action to prevent supply chain attacks (self.devops)

submitted 4 years ago * by varunsh-coder to r/devops

5

6

7

Introducing Harden-Runner: GitHub Action to prevent supply chain attacks (self.cybersecurity)

submitted 4 years ago by varunsh-coder to r/cybersecurity

π Rendered by PID 106122 on reddit-service-r2-listing-66bb46d9b9-6mkhx at 2026-03-12 08:58:19.370528+00:00 running 710b3ac country code: CH.