
Sponsored: Understanding CI/CD attack paths
From Risky Bulletin by Risky Business Media
June 12, 2026 · 16 min
About this episode
This episode discusses the importance of understanding CI/CD attack paths, particularly in relation to GitHub and supply chain security.
In this sponsored episode, James Wilson chats with SpecterOps CTO Jared Atkinson about the central role that GitHub has played in recent supply chain compromises. GitHub is where code gets built, tested, and shipped to devices, cloud, and on-prem environments. Understanding the paths an attacker can use to get into GitHub, and where they can pivot to from there, is essential to securing your GitHub repos and CI/CD pipelines.
People in this episode
Host: James Wilson
Guest: Jared Atkinson
Topics covered
- CI/CD
- supply chain security
- GitHub
- attack paths
- software development
- security
Keywords
- CI/CD
- GitHub
- supply chain
- security
- attack paths
- software development
- Jared Atkinson
Mentioned in this episode
Organizations: SpecterOps, GitHub
More episodes of Risky Bulletin
- Risky Bulletin: CISA tightens patching rules amid bug deluge · June 12, 2026 · 10 min
- Srsly Risky Biz: Europe wants to wean itself off US tech · June 11, 2026 · 20 min
- Risky Bulletin: Nightmare Eclipse drops fresh 0day · June 10, 2026 · 11 min
- Between Two Nerds: Nerds at NATO · June 8, 2026 · 31 min
- Risky Bulletin: RubyGems adds dependency cooldowns to counter supply chain attacks · June 8, 2026 · 7 min
- Risky Bulletin: EU unveils digital sovereignty plan · June 5, 2026 · 12 min
Explore listener stats, chart rankings, contacts and more on the Risky Bulletin podcast page.