Tag
jenkins
Safeguard articles tagged "jenkins" — guides, analysis, and best practices for software supply chain and application security.
15 articles
DevSecOps
Migrating Jenkins to GitHub Actions: Security
A case study in moving a sprawling Jenkins estate to GitHub Actions without losing supply chain visibility, artifact integrity, or developer trust.
Apr 15, 20247 min read
DevSecOps
Jenkins Pipeline Supply Chain Security
How Jenkins pipelines end up as supply chain attack vectors, covering Groovy sandbox risks, plugin CVEs, credential binding, and practical hardening for Jenkins 2.440+.
Apr 2, 20247 min read
DevSecOps
Jenkins Pipeline Security Hardening
How to lock down Jenkins pipelines against credential theft, script injection, and unauthorized access with practical hardening steps.
Nov 8, 20226 min read