GHAST: GitHub Actions Security Analysis Tool

Scan Your GitHub Actions for Common Security Bad Practices

Hello, World! I’ve released a new tool called ghast that allows you to evaluate the security posture of your GitHub Actions. Currently, there are 13 available checks: some of them identify behavior that should be avoided altogether, while others only serve as warnings to highlight potential…