GitHub Actions is phenomenally popular in both open-source and enterprise development - partly due to how different it is from many other existing CI/CD tools. However, this means you’ll need to u...

I just added support for Mermaid diagrams to my site and I’m so pleased with how it turned out! Mermaid is a JavaScript tool for making all sorts of charts and diagrams in code, but having them re...

I’ve been on a professional “refresh all the things” theme the past few months - updated the résumé, LinkedIn, etc. Not because I’m looking to change anything professionally at the moment, but wit...

One of the most common questions I’m asked about GitHub, specifically around Actions and the application security features, is “how do I scan my team’s code on every single push?” While it can tec...

💖 This post contains unresolved professional trauma and is fueled by a desire to spare others that deep pain. You have been warned. 💖 Please stop automatically putting code security alerts into ...

I can’t believe I’ve been doing this whole blogging thing for six months now! In those six months, my initial setup is still working well. I found a big pain point with how I’d set this up versus...

Now that we have actions-runner-controller up and running, we need to think through the runner image some. This piece is all about how to build your own image(s) and whether it’s a good idea to do...

✨ I built a thing! ✨ 💖 Then open-sourced it for the whole world to use! 💖 I wrote a set of Python scripts that creates and manages a team of folks that can access all of the security alerts thro...

I recently replaced my Ubiquiti USG-3 security gateway (info) with a Raspberry Pi 4 B (info) and OpenWRT. My USG-3 acted as a firewall, router, and provided some VLANs to isolate some of our “smar...

As we work on testing and building and deploying custom Actions runners, it’ll save a ton of time if each set can deploy itself automatically. This walk-through will set up GitHub’s hosted Actions...