My GitHub Security Hardening workshop is free next week
Sign up for my live hands-on workshop that's on Tuesday. I've been working on it for months, then I spoke about it at the Accelerate Chicago conference last month, and I finally get to bring it to you wonderful people.
I found this content so useful for my own repos and orgs, that I created an open-source tool to complement the training and help you harden your repositories and find where you could improve. It was so much work to get this training right, I wanted to charge for this two-hour workshop (which would be free for Agentic DevOps Guild members), but then my friends at ChainGuard reached out, and I asked them if they would sponsor the workshop so I could give it away to everyone, and THEY SAID YES! Please thank them by checking out their cool new products, like hardened GitHub Actions and hardened Agent Skills.
My goal is that after this 2-hour workshop, you'll be an expert on GitHub Actions security and on protecting your team's repositories from risky automations and settings.

What am I covering?
- The 4 most common attack types I'm seeing on GitHub
- What settings and techniques will protect you and your repositories
- What linters and tools will help you stay safe
- How to limit the blast radius if hackers get in
- How Chainguard Actions can help reduce attacks
- Why GitHub's new Agentic Workflows are the best way to add Agents
What demos will you get hands-on with?
- Forking a "bad" repo example and walking through hardening
- Running my "gasa" tool on your repos to see warnings
- Take home: Try out other scanners/linters that help harden workflows
- Take home: Add Agentic Workflows to your repos
I hope you'll join me, even if you can't make it!
Assuming you signed up, you'll get all the resources and the recording after the event. It won't be public, so you'll need to sign up to get the goods 👍.
Also, if you're into retro games, there's an easter-egg in the footer you might try out, built by Fable over a few days. 🤓