Papers on robocalls and securing CI/CD will be presented at Usenix Security 2023.
Siddarth Muralee, PhD Student at Purdue working with Arvind Machiry, will present our work on how to perform taint analysis on GitHub Action pipelines to identify code injection vulnerabilities. This was joint work with my PhD student Alex Nahapetyan and colleagues at NC State and Purdue University. You can find the paper, abstract, and presentation video here. You can also learn more on my publication page.