{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreichrz662ja2fss32bpg7gfbzhoexovdhzztfens32sqvpgx65a42e",
    "uri": "at://did:plc:2ikdxjcpbsuoe6mv3qawmazg/app.bsky.feed.post/3mihqqox4gjj2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreidv2l37jbs6mtcku4ihymsuoprtecekflyh54acqnzeoib54vd4zm"
    },
    "mimeType": "image/png",
    "size": 1360667
  },
  "path": "/security/supply-chain-security/securing-the-open-source-supply-chain-across-github/",
  "publishedAt": "2026-04-01T19:20:12.000Z",
  "site": "https://github.blog",
  "tags": [
    "Security",
    "Supply chain security",
    "CI/CD",
    "GitHub Actions",
    "GitHub Security Lab",
    "supply chain security",
    "Securing the open source supply chain across GitHub",
    "The GitHub Blog"
  ],
  "textContent": "Recent attacks on open source focus on exfiltrating secrets; here are the prevention steps you can take today, plus a look at the security capabilities GitHub is working on.\n\nThe post Securing the open source supply chain across GitHub appeared first on The GitHub Blog.",
  "title": "Securing the open source supply chain across GitHub"
}