From f682f2f2d06275b6ab30c2a973c1de2fa120e134 Mon Sep 17 00:00:00 2001 From: eromosele-stepsecurity Date: Mon, 15 Sep 2025 13:51:28 +0100 Subject: [PATCH] Update README.md --- README.md | 8 +++++--- 1 file changed, 5 insertions(+), 3 deletions(-) diff --git a/README.md b/README.md index 7a13f8b..b2c3f6a 100644 --- a/README.md +++ b/README.md @@ -24,12 +24,13 @@ StepSecurity Harden-Runner addresses this gap by providing security monitoring t - [Harden-Runner Detected the tj-actions/changed-files compromise](https://www.stepsecurity.io/blog/harden-runner-detection-tj-actions-changed-files-action-is-compromised) ([CVE-2025-30066](https://github.com/advisories/GHSA-mrrh-fwg8-r2c3)) - [Harden-Runner Detected a CI/CD Supply Chain Attack in Google’s Open-Source Project Flank](https://www.stepsecurity.io/case-studies/flank) +- [Harden-Runner Detected the NX Build System compromise](https://www.stepsecurity.io/blog/supply-chain-security-alert-popular-nx-build-system-package-compromised-with-data-stealing-malware) - [Harden-Runner Detected a CI/CD Supply Chain Attack in Microsoft’s Open-Source Project Azure Karpenter Provider in Real-Time](https://www.stepsecurity.io/case-studies/azure-karpenter-provider) - [Harden-Runner Detected Anomalous Traffic to api.ipify.org Across Multiple Customers](https://www.stepsecurity.io/blog/harden-runner-detects-anomalous-traffic-to-api-ipify-org-across-multiple-customers) -- [Harden-Runner Flagged an Anomalous Outbound Call, Leading to a Docker Documentation Update](https://www.stepsecurity.io/blog/harden-runner-flags-anomalous-outbound-call-leading-to-docker-documentation-update) +- [Harden-Runner Detected an Unexpected Microsoft Defender Installation on GitHub-Hosted Ubuntu Runners](https://www.stepsecurity.io/blog/how-stepsecurity-harden-runner-detected-unexpected-microsoft-defender-installation-on-github-hosted-ubuntu-runners) ### See It in Action -Harden-Runner secures over **a million CI/CD workflow runs every week**, protecting thousands of pipelines, including those from popular open-source projects by **Microsoft, Google, and CISA**. See how top projects are using Harden-Runner and explore the insights: +Harden-Runner secures over **8 million CI/CD workflow runs every week**, protecting thousands of pipelines, including those from popular open-source projects by **Microsoft, Google, and CISA**. See how top projects are using Harden-Runner and explore the insights: ➡️ [Who's using Harden-Runner?](https://docs.stepsecurity.io/whos-using-harden-runner) ## Quick Links @@ -114,6 +115,7 @@ Harden-Runner offers a comprehensive suite of features to enhance the security o - **Anomaly Detection:** Once the baseline is created, any future outbound calls not in the baseline trigger a detection. - **Block Network Egress Traffic with Domain Allowlist:** Optionally use the automatically created baseline to control outbound network traffic by specifying allowed domains, preventing unauthorized data exfiltration. - **Detect Modification of Source Code:** Monitor and alert on unauthorized changes to your source code during the CI/CD pipeline. +- **Usage Limits:** The Community Tier includes 10,000 Harden-Runner runs per week. A run is counted each time a workflow using Harden-Runner executes. Once this limit is reached, Harden-Runner will continue to run but will not enforce protections on your builds. ### Enterprise (Paid) @@ -135,7 +137,7 @@ Explore the full feature set in the [Features Documentation](https://docs.stepse ## Trusted By and Case Studies -Harden-Runner is trusted by over 6000 leading open-source projects and enterprises, including Microsoft, Google, Kubernetes, and more. +Harden-Runner is trusted by over 8000 leading open-source projects and enterprises, including Microsoft, Google, Kubernetes, and more. ### Trusted by