For each GitHub Actions workflow run, Harden-Runner monitors run-time network, file, and process events and makes runtime insights available via the StepSecurity Web App.
Find Insights Link
For all workflow runs monitored by Harden-Runner, it records the insights link in the GitHub Actions workflow execution logs.
The following video also demonstrates how to discover the insights link on GitHub.
View Insights Page
Here is an example Insights page. The following image summarizes all capabilities on the Insights page.
Let's look at each section one by one
The top section shows details about the workflow run.
On the left side under
Jobssection, you will see all executed workflow jobs. Click on a job to see runtime insights about it.
Once you select a job, you will see details about the job execution:
- A numbered list of executed steps. This should match with the workflow job definition defined in the workflow action file.
- For each step, you will see a process monitor view of what activities happened as part of each step. This includes all network and source-code override activies by process.
At the bottom, you will see a recommended policy to run Harden-Runner in
Blockmode. This policy includes all domains Harden-Runner observed during the workflow run. You can learn more about