devalias.net
devalias.net copied to clipboard
Published
20 hours ago •
0xdevalias
0xdevalias
[DeepDive] GitHub Features (Actions, CodeQL, Semantic, Security/Learning Lab, etc)
Github Actions
- https://github.com/features/actions
- https://github.com/marketplace?type=actions
- https://help.github.com/en/actions/configuring-and-managing-workflows/creating-and-storing-encrypted-secrets
- https://github.com/nektos/act
-
Run your GitHub Actions locally
-
Semantic
- https://github.com/github/semantic
-
semanticis a Haskell library and command line tool for parsing, analyzing, and comparing source code. - https://github.com/tree-sitter/tree-sitter
-
Tree-sitter is a parser generator tool and an incremental parsing library. It can build a concrete syntax tree for a source file and efficiently update the syntax tree as the source file is edited.
-
-
Security Lab
- https://securitylab.github.com/
- https://securitylab.github.com/bounties
- https://securitylab.github.com/research
- https://securitylab.github.com/advisories
- https://securitylab.github.com/get-involved
- https://securitylab.github.com/ctf
CodeQL
- https://securitylab.github.com/tools/codeql
- https://lab.github.com/githubtraining/codeql-u-boot-challenge-(cc++)
- https://github.com/github/codeql
- https://lgtm.com/
- https://lgtm.com/query/rule:1823453799/lang:java/
- https://help.semmle.com/codeql/
- https://help.semmle.com/codeql/codeql-cli.html
- https://blog.semmle.com/secure-software-github-semmle/
Learning Lab
- https://lab.github.com/
