Skip to content
View varunsh-coder's full-sized avatar
64 followers · 6 following

Achievements

Achievement: Starstruckx3Achievement: Pair Extraordinairex3Achievement: QuickdrawAchievement: YOLOAchievement: Pull Sharkx3Achievement: Arctic Code Vault Contributor

Achievements

Achievement: Starstruckx3Achievement: Pair Extraordinairex3Achievement: QuickdrawAchievement: YOLOAchievement: Pull Sharkx3Achievement: Arctic Code Vault Contributor

Highlights

Organizations

@step-security

Block or report varunsh-coder

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
varunsh-coder/README.md

Hi there 👋

  • 🔭 I’m currently working on my startup StepSecurity, to thwart software supply chain attacks

    I was a Principal Security Software Engineering Manager at Microsoft, and used to lead the Green Team, to solve high-risk systemic security issues in Azure.

    In 2006, I had won an All-India contest organized by Microsoft called the Security Shootout Contest, in which 11,200 developers participated, and for which an SUV was the first prize!

  • 📫 How to reach me: https://www.linkedin.com/in/varunsharma07/

Pinned Loading

  1. step-security/harden-runner Public

    Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in re…

    TypeScript 765 64

  2. step-security/secure-repo Public

    Orchestrate GitHub Actions Security

    Go 278 41

868 contributions in the last year

Contribution Graph
Day of Week March April May June July August September October November December January February March
Sunday
Monday
Tuesday
Wednesday
Thursday
Friday
Saturday
Learn how we count contributions
Less
No contributions.
Low contributions.
Medium-low contributions.
Medium-high contributions.
High contributions.
More

Contribution activity

March 2025

Created 9 commits in 1 repository

Created a pull request in step-security/harden-runner that received 3 comments

Update readme

+22 −13 lines changed 3 comments
Opened 5 other pull requests in 3 repositories

Created an issue in tj-actions/changed-files that received 56 comments

Multiple tags in this action are compromised

Example this tag was just updated 3 hours back and is potentially exfiltrating credentials https://github.com/tj-actions/changed-files/tags?after=v…

56 comments
Opened 3 other issues in 3 repositories
  • markdown
    This contribution was made on Mar 14
Loading