InfoQ

LinkedIn Leverages GitHub Actions, CodeQL, and Semgrep for Code Scanning

LinkedIn has rebuilt its static application security testing (SAST) pipeline using GitHub Actions and custom workflows, enabling consistent, enforceable code scanning across thousands of repositories.

Every Developer Is Now A Risk: AI, Accountability And The Future Of Software

I see it’s the organizations that make trust, documentation and automated policy enforcement part of their development ...