May 22, 2024

Episode 784: I'll Buy You a Poutine

Listen Later

1 hour 4 minutes

This week Jonathan Bennett and Dan Lynch talk with François Proulx of BoostSecurity, talking about the Poutine security scanner, available at https://github.com/boostsecurityio/poutine. It's all about the security vulnerabilities that may lurk in your Github Actions, and Gitlab Pipelines. When someone sends in a pull request, could they run arbitrary code, and is that going to bite you? Listen to find out!

You can join the conversation in the Hackaday Discord, where the show records live each week, as well as getting the full story and show links from Hackaday. Oh, and follow the official Mastadon account!

Theme music: "Newer Wave" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/

...more

View all episodes

View all episodes

Download on the App Store

Download on the App Store

Get it on Google Play

FLOSS Weekly

By Hackaday

5

33 ratings

May 22, 2024

Episode 784: I'll Buy You a Poutine

Listen Later

1 hour 4 minutes

This week Jonathan Bennett and Dan Lynch talk with François Proulx of BoostSecurity, talking about the Poutine security scanner, available at https://github.com/boostsecurityio/poutine. It's all about the security vulnerabilities that may lurk in your Github Actions, and Gitlab Pipelines. When someone sends in a pull request, could they run arbitrary code, and is that going to bite you? Listen to find out!

You can join the conversation in the Hackaday Discord, where the show records live each week, as well as getting the full story and show links from Hackaday. Oh, and follow the official Mastadon account!

Theme music: "Newer Wave" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/

...more

More shows like FLOSS Weekly

Software Engineering Radio - the podcast for professional software developers by se-radio@computer.org

Software Engineering Radio - the podcast for professional software developers

272 Listeners

Windows Weekly (Audio) by TWiT

Windows Weekly (Audio)

870 Listeners

The Changelog: Software Development, Open Source by Changelog Media

The Changelog: Software Development, Open Source

284 Listeners

The Amp Hour Electronics Podcast by The Amp Hour (Chris Gammell and David L Jones)

The Amp Hour Electronics Podcast

228 Listeners

LINUX Unplugged by Jupiter Broadcasting

LINUX Unplugged

265 Listeners

Talk Python To Me by Michael Kennedy

Talk Python To Me

590 Listeners

Python Bytes by Michael Kennedy and Brian Okken

Python Bytes

215 Listeners

Late Night Linux by The Late Night Linux Family

Late Night Linux

154 Listeners

CoRecursive: Coding Stories by Adam Gordon Bell - Software Developer

CoRecursive: Coding Stories

189 Listeners

Self-Hosted by Jupiter Broadcasting

Self-Hosted

135 Listeners

The Stack Overflow Podcast by The Stack Overflow Podcast

The Stack Overflow Podcast

62 Listeners

The Real Python Podcast by Real Python

The Real Python Podcast

139 Listeners

2.5 Admins by The Late Night Linux Family

2.5 Admins

92 Listeners

Oxide and Friends by Oxide Computer Company

Oxide and Friends

47 Listeners

Untitled Linux Show (Audio) by TWiT

Untitled Linux Show (Audio)

6 Listeners