From 4719ad5578c61961f4f70f833580278dea5544de Mon Sep 17 00:00:00 2001 From: Ashish Kurmi Date: Fri, 26 Sep 2025 09:39:29 -0700 Subject: [PATCH] README updates --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index b2c3f6a..d1caef0 100644 --- a/README.md +++ b/README.md @@ -28,6 +28,7 @@ StepSecurity Harden-Runner addresses this gap by providing security monitoring t - [Harden-Runner Detected a CI/CD Supply Chain Attack in Microsoft’s Open-Source Project Azure Karpenter Provider in Real-Time](https://www.stepsecurity.io/case-studies/azure-karpenter-provider) - [Harden-Runner Detected Anomalous Traffic to api.ipify.org Across Multiple Customers](https://www.stepsecurity.io/blog/harden-runner-detects-anomalous-traffic-to-api-ipify-org-across-multiple-customers) - [Harden-Runner Detected an Unexpected Microsoft Defender Installation on GitHub-Hosted Ubuntu Runners](https://www.stepsecurity.io/blog/how-stepsecurity-harden-runner-detected-unexpected-microsoft-defender-installation-on-github-hosted-ubuntu-runners) +- [Harden-Runner Flagged an Anomalous Outbound Call, Leading to a Docker Documentation Update](https://www.stepsecurity.io/blog/harden-runner-flags-anomalous-outbound-call-leading-to-docker-documentation-update) ### See It in Action Harden-Runner secures over **8 million CI/CD workflow runs every week**, protecting thousands of pipelines, including those from popular open-source projects by **Microsoft, Google, and CISA**. See how top projects are using Harden-Runner and explore the insights: @@ -115,7 +116,6 @@ Harden-Runner offers a comprehensive suite of features to enhance the security o - **Anomaly Detection:** Once the baseline is created, any future outbound calls not in the baseline trigger a detection. - **Block Network Egress Traffic with Domain Allowlist:** Optionally use the automatically created baseline to control outbound network traffic by specifying allowed domains, preventing unauthorized data exfiltration. - **Detect Modification of Source Code:** Monitor and alert on unauthorized changes to your source code during the CI/CD pipeline. -- **Usage Limits:** The Community Tier includes 10,000 Harden-Runner runs per week. A run is counted each time a workflow using Harden-Runner executes. Once this limit is reached, Harden-Runner will continue to run but will not enforce protections on your builds. ### Enterprise (Paid)