May 22, 2024

Episode 784: I'll Buy You a Poutine

Listen Later

1 hour 4 minutes

This week Jonathan Bennett and Dan Lynch talk with François Proulx of BoostSecurity, talking about the Poutine security scanner, available at https://github.com/boostsecurityio/poutine. It's all about the security vulnerabilities that may lurk in your Github Actions, and Gitlab Pipelines. When someone sends in a pull request, could they run arbitrary code, and is that going to bite you? Listen to find out!

You can join the conversation in the Hackaday Discord, where the show records live each week, as well as getting the full story and show links from Hackaday. Oh, and follow the official Mastadon account!

Theme music: "Newer Wave" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/

...more

View all episodes

View all episodes

Download on the App Store

Download on the App Store

Get it on Google Play

FLOSS Weekly

By Hackaday

5

33 ratings

May 22, 2024

Episode 784: I'll Buy You a Poutine

Listen Later

1 hour 4 minutes

This week Jonathan Bennett and Dan Lynch talk with François Proulx of BoostSecurity, talking about the Poutine security scanner, available at https://github.com/boostsecurityio/poutine. It's all about the security vulnerabilities that may lurk in your Github Actions, and Gitlab Pipelines. When someone sends in a pull request, could they run arbitrary code, and is that going to bite you? Listen to find out!

You can join the conversation in the Hackaday Discord, where the show records live each week, as well as getting the full story and show links from Hackaday. Oh, and follow the official Mastadon account!

Theme music: "Newer Wave" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/

...more

More shows like FLOSS Weekly

Security Now (Audio) by TWiT

Security Now (Audio)

1,952 Listeners

Hanselminutes with Scott Hanselman by Scott Hanselman

Hanselminutes with Scott Hanselman

378 Listeners

Software Engineering Radio - the podcast for professional software developers by se-radio@computer.org

Software Engineering Radio - the podcast for professional software developers

265 Listeners

Windows Weekly (Audio) by TWiT

Windows Weekly (Audio)

852 Listeners

The Changelog: Software Development, Open Source by Changelog Media

The Changelog: Software Development, Open Source

285 Listeners

The Amp Hour Electronics Podcast by The Amp Hour (Chris Gammell and David L Jones)

The Amp Hour Electronics Podcast

230 Listeners

LINUX Unplugged by Jupiter Broadcasting

LINUX Unplugged

266 Listeners

Talk Python To Me by Michael Kennedy

Talk Python To Me

580 Listeners

Python Bytes by Michael Kennedy and Brian Okken

Python Bytes

214 Listeners

Late Night Linux by The Late Night Linux Family

Late Night Linux

153 Listeners

Home Assistant Podcast by HK Media

Home Assistant Podcast

64 Listeners

Self-Hosted by Jupiter Broadcasting

Self-Hosted

136 Listeners

2.5 Admins by The Late Night Linux Family

2.5 Admins

89 Listeners

This Week in Space (Audio) by TWiT

This Week in Space (Audio)

128 Listeners

Oxide and Friends by Oxide Computer Company

Oxide and Friends

48 Listeners