This tool demo covers following tools where the speaker has contributed or authored
FLOWLYT
FLOWLYT
Abstract
Flowlyt is a static analysis and policy-as-code tool that scans GitHub Actions workflows for malicious behavior, hardcoded secrets, and insecure patterns. It supports Open Policy Agent (OPA), allowing security teams to define and enforce custom CI/CD security rules. The tool was created in response to supply chain attacks on popular GitHub Actions (e.g. CVE-2025-30066), which affected thousands of repositories by exfiltrating CI/CD secrets via workflow logs.
Presented at Black Hat Europe 2025 Arsenal, December 8-11, London.