In this setup, the custom-job job will run on a GitHub-hosted runner, but the action will
run in the Docker container that you've specified. This gives you the ability to specify the
exact environment that your action needs, without the need to set up and manage your
own self-hosted runner.
GitHub Advanced Security
Although Microsoft now owns GitHub, and there's a lot of feature parity between the two
platforms, Microsoft has announced that the Advanced Security service will not be
available for ADO. GitHub's advanced security features definitely add significant value
to the platform and can serve as compelling reasons to consider migration from Azure
DevOps to GitHub Actions. Here are some key features:
Code Scanning: This feature scans your code as soon as it’s pushed to GitHub, and can
surface and help prevent vulnerabilities before they reach production. The tool is built
on the open-source project Semmle’s CodeQL, allowing you to explore your source
code as a database. It's a powerful tool for identifying security vulnerabilities in many
popular programming languages.
Secret Scanning: Formerly known as token scanning, this feature scans repositories for
known secret formats to prevent fraudulent use of credentials committed accidentally.
Once it finds potential secrets, it alerts the provider or the repository owner, ensuring
quick action can be taken.