Have a look at things like: # GH Actions SAST - (zizmore)[https://github.com/zizmorcore/zizmor) - (Gato-X)[https://github.com/AdnaneKhan/Gato-X] Also a toolkit to help exploit (and therefor protect)
Have a look at things like:
GH Actions SAST
Also a toolkit to help exploit (and therefor protect)