Enhancing Software Integrity with Artifact Attestations in GitHub Actions

Ensuring the integrity and security of software artifacts is extremely important. With the proliferation of supply chain attacks and the increasing complexity of software development environments, developers need robust tools to safeguard their code and build processes. Recognizing this need, GitHub has introduced Artifact Attestations, a feature designed to provide…

03/05/2024 Article Bloggers Chris Pietschmann

Share:

You may be interested in

Fix: response_type ‘id_token’ is not enabled for the application (AADSTS700054)
When creating and configuring an Azure AD App Registration to use for authenticating a web application with Azure AD, it’s common to see the AADSTS700054: response_type 'id_token' is not enabled…
17/11/2023
How to Determine URL a Local Git Repository was Originally Cloned From
Git is a powerful version control system widely used in the software development world. When working with Git repositories, it’s essential to have a clear understanding of the repository’s origin.…
30/10/2023
Using Terraform String ‘replace’ Function for RegEx String Replacement
HashiCorp Terraform offers a lot of powerful functions that can be used for string manipulation within your Infrastructure as Code (IaC) projects. Among these functions is the versatile replace function,…
10/05/2024
Exploring .NET Aspire: Building Cloud-Native Apps with Ease
In the ever-evolving landscape of cloud-native application development, building scalable, observable, and production-ready distributed systems can be a challenging task. This is where .NET Aspire comes into play. .NET Aspire…
02/05/2024
IoT Security Architecture: Trust Zones and Security Boundaries
There are many aspects to architecting an Internet of Things (IoT) solution. Security is the most important aspect of any computer system, but it’s especially important with IoT solutions. It…
06/05/2024
GitHub Copilot Chat – AI Coding Assistant Anywhere in the GitHub Mobile App
GitHub Copilot Chat is a chat interface that let’s you interact directly with GitHub Copilot from within the GitHub Mobile app. It empowers developers to ask and receive answers using…
07/05/2024
Microsoft Copilot Internal Architecture Explained
Microsoft Copilot is an advanced, Generative AI-powered assistant designed to enhance productivity by integrating with various Microsoft applications and services. It leverages large language models (LLMs) and the extensive data…
24/05/2024
Phi-3: Microsoft Redefines Small Language Models (SLMs)
In the area of artificial intelligence (AI), the quest for smaller yet powerful language models has been an ongoing pursuit. Microsoft has taken a significant leap forward with the introduction…
29/04/2024
Azure Regions: Interactive Map of Global Datacenters
This Microsoft Azure Regions Interactive Map shows the locations of each of the Microsoft Azure cloud regions plotted on a map. The map code is built using the Azure Maps…
11/10/2023
Azure Front Door: CNAME/alias record is not currently detected
When configuring a custom domain with Azure Front Door, one common issue that users may encounter is the “CNAME/alias record is not currently detected” message. This can be a confusing…
03/05/2024
Azure Resource Tags: Important Organization Strategies and Tips
In the Microsoft Azure cloud, the organization and management of resources are extremely important for operational efficiency and cost-effectiveness. Azure Tags serve as a fundamental tool in categorizing resources within…
25/03/2024
GitHub Actions: Run Pandoc to convert Markdown to Word Document
Pandoc is a great tool for document conversion and generation. I’ve written tons of training course and documentation content over the years, and have often used Pandoc to convert Markdown…
09/03/2024