Skip to content

wspr-ncsu/github-actions-security-analysis

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
artifacts/git-actions
artifacts/git-actions
 
 
gwchecker
gwchecker
 
 
poc-actions
poc-actions
 
 
CITATION.cff
CITATION.cff
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

GitHub Actions Security Analysis

Project Contents

  1. artifacts/ contains dataset of workflows of public repositories we crawled from GitHub
  2. gwchecker/ contains our action that can be used to check the workflows inside repository
  3. poc-actions/ contains proof of concept actions that can be used to circumvent security properties

Research Paper

Our work was published at Usenix Security'22 as following paper:

Characterizing the Security of GitHub CI Workflows [PDF]

Igibek Koishybayev and Aleksandr Nahapetyan, North Carolina State University; Raima Zachariah, Independent Researcher; Siddharth Muralee, Purdue University; Bradley Reaves and Alexandros Kapravelos, North Carolina State University; Aravind Machiry, Purdue University

31st USENIX Security Symposium (USENIX Security 22)

@inproceedings {github-usenix22,
title = {Characterizing the Security of Github {CI} Workflows},
author = {Igibek Koishybayev and Aleksandr Nahapetyan and Raima Zachariah and Siddharth Muralee and Bradley Reaves and Alexandros Kapravelos and Aravind Machiry},
booktitle = {31st USENIX Security Symposium (USENIX Security 22)},
year = {2022},
isbn = {978-1-939133-31-1}
}

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

10 stars

Watchers

5 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages