Researching And Remediating RCEs Via GitHub Actions - Bar Kaduri, Roi Nisimi - ASW #355 Application Security Weekly (Audio) podcast

Over 20 million podcasts, powered by

Artwork

Researching and Remediating RCEs via GitHub Actions - Bar Kaduri, Roi Nisimi - ASW #355

Application Security Weekly (Audio)

68 subscribers

published 24h ago

Share

MP3•Episode home

Content provided by Security Weekly Productions. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Security Weekly Productions or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://staging.podcastplayer.com/legal.

Pull requests are a core part of collaboration, whether in open or closed source. GitHub has documented some of the security consequences of misconfiguring how PRs can trigger actions. But what happens when repo owners don't read the docs? Bar Kaduri and Roi Nisimi walk through their experience in reading docs, finding vulns, demonstrating exploits, and working with repo owners to improve their security. Their work highlights the challenges in maintaining good security guidance, figuring out secure defaults, and how so many orgs still struggle with triaging external security reports -- something that's becoming even more challenging when orgs are being flooded with low-quality reports from LLMs.

Segment Resources:

Visit https://www.securityweekly.com/asw for all the latest episodes!

Show Notes: https://securityweekly.com/asw-355

… continue reading

369 episodes

#Tech News #Applicationsecurityweekly #Sdlc #Softwaredevelpmentlifecycle #News #Security #Tech #Software Development #Security Weekly Productions #DevOps #DevSecOps #AppSec #Decrypts

All episodes

×

Top Podcasts

Artwork

1
The Bill Simmons Podcast

The Ringer

112k

1k

1d ago1d ago

Weekly+

HBO and The Ringer's Bill Simmons hosts the most downloaded sports podcast of all time, with a rotating crew of celebrities, athletes, and media staples, as well as mainstays like Cousin Sal, Joe House, and a slew of other friends and family members who always happen to be suspiciously available.

… continue reading

Artwork

1
PTI

ESPN, Tony Kornheiser, Michael Wilbon

104k

200

4d ago4d ago

Weekly+

Tony Kornheiser and Michael Wilbon face off in the nation's capital on the day's hottest topics.

… continue reading

Artwork

1
The Herd with Colin Cowherd

iHeartPodcasts and The Volume

4k

11k

11h ago11h ago

Daily+

The Herd with Colin Cowherd is a thought-provoking, opinionated, and topic-driven journey through the top sports stories of the day.

… continue reading

Artwork

1
Planet Money

NPR

189k

355

3d ago3d ago

Weekly+

Wanna see a trick? Give us any topic and we can tie it back to the economy. At Planet Money, we explore the forces that shape our lives and bring you along for the ride. Don't just understand the economy – understand the world. Wanna go deeper? Subscribe to Planet Money+ and get sponsor-free episodes of Planet Money, The Indicator, and Planet Money Summer School. Plus access to bonus content. It's a new way to support the show you love. Learn more at plus.npr.org/planetmoney

… continue reading

Artwork

1
Comedy of the Week

BBC Radio 4

164k

51

2d ago2d ago

Weekly

Brighten your week with the latest BBC Radio 4 comedy.

… continue reading

Artwork

1
The Bugle

The Bugle

123k

673

6d ago6d ago

Weekly

It's the trans-global satiricast that leaves no hot potato unbuttered. Andy Zaltzman breaks down the news with comedians from across the world including Alice Fraser, Hari Kondabolu, Chris Addison, John Oliver, Nish Kumar, Tiff Stevenson and Helen Zaltzman. Go to TheBuglePodcast.com to become a premium subscriber and get exclusive shows. Follow us on YouTube. Hosted on Acast. See acast.com/privacy for more information.

… continue reading

Artwork

1
How Did This Get Made?

Earwolf and Paul Scheer, June Diane Raphael, Jason Mantzoukas

198k

306

29m ago29m ago

Weekly+

The award-winning comedy podcast that celebrates bad movies. Comedians and actors Paul Scheer (The League), June Diane Raphael (Grace and Frankie), and Jason Mantzoukas (Big Mouth) break down the very best of the worst films ever made—we’re talkin’ blockbuster flops, cheesy 80s action movies, Lifetime thrillers, obscure cult classics, and if we’re honest… most Nic Cage and Jason Statham movies. Plus, sometimes they’re even joined by hilarious guests like Seth Rogen, Conan O’Brien, Amy Schume ...

… continue reading

Artwork

1
Slate Culture

Slate Podcasts

158k

3k

24h ago24h ago

Daily

Get the Culture Gabfest and all of Slate's culture coverage here.

… continue reading

Artwork

1
TED Talks Daily

TED

1342k

2k

2h ago2h ago

Daily

Want TED Talks on the go? Everyday, this feed brings you our latest talks in audio format. Hear thought-provoking ideas on every subject imaginable – from Artificial Intelligence to Zoology, and everything in between – given by the world's leading thinkers and doers. This collection of talks, given at TED and TEDx conferences around the globe, is also available in video format. Interested in learning more about upcoming TED events? Follow these links: TEDNext: ted.com/futureyou Hosted on Aca ...

… continue reading

Artwork

1
NBC Nightly News with Tom Llamas

NBC News

1200k

721

22h ago22h ago

Daily

Listen to "NBC Nightly News," providing reports and analysis of the day's most newsworthy national and international events. This audio podcast, updated each evening, brings you the day's show in its entirety. For more from "Nightly News", visit NBCNightlyNews.com.

… continue reading

Artwork

1
CBS News Roundup

CBS News

1130k

2k

5h ago5h ago

Daily

The CBS News team wraps up the major headlines you need to know every day on the CBS News Roundup podcast. On weekday mornings, Steve Kathan delivers the “World News Roundup” and every evening you can catch up on all the day's news with Jennifer Keiper on the “World News Roundup: Late Edition”. Then, every weekend the CBS News team in Washington goes deep into the major stories on “Weekend Roundup'' hosted by Allison Keyes. Each episode features a “Kaleidoscope” segment that takes on social ...

… continue reading

Artwork

1
Daily Boost With Scott Smith

Scott Smith - Motivation and Coaching

379k

1k

2h ago2h ago

Daily

The Daily Boost is where ancient wisdom meets modern action. I'm Scott Smith, and for 20 years, I've helped people like you cut through life's complexity with timeless principles that actually work. Every Monday through Friday (under 10 minutes), you get philosophy made practical — the essential rules, frameworks, and step-by-step formulas that turn confusion into clarity. This is Stoic wisdom without the theory. Life principles without the fluff. Clear steps for complicated moments. This is ...

… continue reading

Artwork

1
Radiolab

WNYC Studios

292k

150

4d ago4d ago

Weekly

Radiolab is on a curiosity bender. We ask deep questions and use investigative journalism to get the answers. A given episode might whirl you through science, legal history, and into the home of someone halfway across the world. The show is known for innovative sound design, smashing information into music. It is hosted by Lulu Miller and Latif Nasser.

… continue reading

Artwork

1
Science Friday

Science Friday and WNYC Studios

187k

1k

17h ago17h ago

Daily

Covering the outer reaches of space to the tiniest microbes in our bodies, Science Friday is the source for entertaining and educational stories about science, technology, and other cool stuff.

… continue reading

Artwork

1
This American Life

This American Life

361k

13

2d ago2d ago

Monthly

Each week we choose a theme. Then anything can happen. This American Life is true stories that unfold like little movies for radio. Personal stories with funny moments, big feelings, and surprising plot twists. Newsy stories that try to capture what it’s like to be alive right now. It’s the most popular weekly podcast in the world, and winner of the first ever Pulitzer Prize for a radio show or podcast. Hosted by Ira Glass and produced in collaboration with WBEZ Chicago.

… continue reading

Artwork

1
Snap Judgment

Snap Judgment and PRX

318k

497

6d ago6d ago

Weekly

Snap Judgment mixes real stories with killer beats to produce cinematic, dramatic radio. Snap’s raw, musical brand of storytelling dares listeners to see the world through the eyes of another. It's storytelling... with a BEAT.

… continue reading

Artwork

1
Criminal

Vox Media Podcast Network

257k

353

5d ago5d ago

Weekly

Criminal is the first of its kind. A show about people who’ve done wrong, been wronged, or gotten caught somewhere in the middle. Hosted by Phoebe Judge. Named a Best Podcast of 2023 by the New York Times. Part of the Vox Media Podcast Network.

… continue reading

Artwork

1
Sword and Scale

Sword and Scale

60k

287

3d ago3d ago

Monthly+

Sword and Scale is a weekly true crime podcast covering the dark underworld of crime and the criminal justice system’s response to it. The first episode launched January 1st, 2014 and feature stories of murder, abduction, rape, and even more bizarre forms of crime. It’s the purest form of true-crime where the raw uncensored audio tells the story. Everything from 911 calls to court testimony, interviews with victims and sometimes with perpetrators give listeners a 360 degree look at the seedy ...

… continue reading

Artwork

1
My Favorite Murder with Karen Kilgariff and Georgia Hardstark

Exactly Right and iHeartPodcasts

52k

1k

1d ago1d ago

Weekly+

My Favorite Murder is a true crime comedy podcast hosted by Karen Kilgariff and Georgia Hardstark. Each week, Karen and Georgia share compelling true crimes and hometown stories from friends and listeners. Since MFM launched in January of 2016, Karen and Georgia have shared their lifelong interest in true crime and have covered stories of infamous serial killers like the Night Stalker, mysterious cold cases, captivating cults, incredible survivor stories and important events from history lik ...

… continue reading

Help/FAQ | Advertise with Us

Arts|Business|Comedy|Economics|Entertainment|News|Politics|Religion

Science|Soccer|Sports|Storytelling|Technology|True Crime

Copyright 2025 | Privacy Policy | Terms of Service | | Copyright

Listen to this show while you explore