The GitHub marketplace contains 21500 Actions at the time I write this. Tomorrow it will probably be at least one more. Creating and publishing an action is a very simple process, which must have helped with the success of the platform, however, properly securing the repository against attacks isn't as easy as it seems and the first Action worm proof-of-concepts have already been demonstrated.

Do you own a GitHub Action? Do you use GitHub Actions? In that case, knowing how to properly secure your GitHub Actions environment is super important.

This session quickly covers GitHub Actions in general before exploring all the features GitHub offers to protect your actions from attack.