We’re excited to announce a new integration for StepSecurity: you can now export Harden-Runner security insights and detections directly to your own Amazon S3 bucket.
This update gives security teams greater flexibility in how they store, analyze, and act on CI/CD telemetry from GitHub Actions. Whether you’re responding to incidents, monitoring trends, or building custom automations, exporting to S3 makes it easier to plug StepSecurity into the tools and workflows you already use.
CI/CD pipelines are a growing target for attackers, and visibility into what’s happening during every build is critical. Harden-Runner helps protect GitHub Actions by detecting suspicious activity and enforcing runtime restrictions—but until now, those insights lived entirely within the StepSecurity platform.
With the new S3 integration, you can stream that data out of StepSecurity in real-time and into your organization’s security ecosystem. Many third-party analytics, data aggregation, and SIEM solutions support S3 integration, making it easy to incorporate Harden-Runner insights and detections into your existing workflows for monitoring, alerting, and incident response. That means:
Once enabled, StepSecurity will continuously export the Harden-Runner data you choose—such as insights or detections—to your designated S3 bucket. You can organize the exported files by date, customize the folder structure, and control which repositories the integration applies to.
The setup process uses an AWS IAM Role with a secure trust relationship, and we provide a CloudFormation template to simplify deployment. There’s no need to share any secrets—such as IAM access keys—with StepSecurity.
Ready to get started?
Set up your S3 integration and start streaming Harden-Runner security data today.
🔗 View the docs for setup instructions →
此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。