Welcome to the GitHub repository for the research paper "ARGUS: A Framework for Staged Static Taint Analysis of GitHub Workflows and Actions". This repository contains the website that provides an overview of the paper, its findings, and the ARGUS system. The paper was accepted at USENIX Security 2023.
The paper presents ARGUS, the first static taint analysis system for identifying code injection vulnerabilities in GitHub Actions. The authors conducted a large-scale evaluation on 2,778,483 Workflows referencing 31,725 Actions and discovered critical code injection vulnerabilities in 4,307 Workflows and 80 Actions. The paper demonstrates that command injection vulnerabilities in the GitHub Actions ecosystem are not only pervasive but also require taint analysis to be detected.
index.html: The main webpage file that provides an overview of the paper and the ARGUS system. contact.html: This webpage provides contact information for the authors.
To view the website, simply clone this repository and open the index.html file in your web browser.
git clone https://github.com/username/argus-paper-website.git
cd argus-paper-website
We welcome contributions to this repository. If you find any issues or have suggestions for improvements, please open an issue. If you wish to contribute directly, please fork this repository, make your changes, and open a pull request.
This project is licensed under the MIT License. See the LICENSE file for more details.
For any questions or comments, please contact the maintainer of this website, Siddharth Muralee.