Blog
Thoughts, tutorials, and insights on web development
—
GitHub Actions
Blocking Unsafe Code: Security Audits in GitHub Actions
2025-09-017
Step-by-step guide to integrating bundler-audit, license_finder, and OSV Scanner into CI/CD pipelines — with YAML examples that block deployments until issues are fixed.
GitHub Actions
Ruby
Security
Supply Chain
DevSecOps