This article details LinkedIn's efforts to upgrade its Static Application Security Testing (SAST) capabilities. It covers the challenges faced with legacy systems, the design principles guiding the modernization, and the implementation of a new GitHub Actions-based workflow to enhance security without disrupting developer productivity.

GitHub Agentic Workflows automate tasks in your repositories using AI. You can define workflows in markdown, and they integrate with GitHub features like Actions and Issues. The system prioritizes security with sandboxed execution and limited permissions.

GitHub Agentic Workflows automate repository tasks using AI, allowing users to create workflows in markdown instead of YAML. It integrates with GitHub features for improved efficiency, all while maintaining security through sandboxed execution and controlled permissions. The tool is still in early development, so caution is advised.

Argo Workflows v3.7.0 has been released, introducing 24 new features and 83 fixes, enhancing automation capabilities for workflows. Key updates include smarter caching, multi-controller locking, dynamic namespace parallelism, and improved UI functionalities, all aimed at optimizing resource usage and security. Users can upgrade to the latest version and explore the new features to streamline their workflow automation processes.

Tracecat is an open source automation platform designed for security and IT engineers, featuring YAML-based templates and a no-code UI for streamlined workflows. It offers community support, deployment options via Docker and AWS, and an Enterprise Edition with additional features. Users can access a registry of integration templates and contribute to the ongoing development of the platform.