Open Source Agent

Zero-Trust Egress Filtering for GitHub Actions

Block unauthorized network connections in your CI/CD pipelines before they exfiltrate secrets or intellectual property. Real-time monitoring and enforcement for GitHub-hosted runners.

Get Started FreeView Demo

Free for up to 5 contributors • Unlimited repos (public & private) • No credit card required

build.yml
steps:
- name: Setup Bullfrog
  uses: bullfrogsec/bullfrog
  with:
    egress-policy: block
# Your workflow steps run protected
- name: Build
  run: npm run build

The Supply Chain Attack Problem

Companies invest heavily in security, yet CI/CD pipelines remain vulnerable:

Developer laptops are protected with EDR

Production servers and infrastructure are secured with firewalls and monitoring

GitHub Actions hosted runners have zero egress filtering

Attackers can freely exfiltrate secrets or steal intellectual property

Bullfrog closes this gap by bringing the same level of egress filtering to your CI/CD pipelines.

Zero-Trust Security for GitHub Actions

Real-time egress filtering and monitoring for Github Hosted Ubuntu runners

Egress Filtering

Block unauthorized network connections from your CI/CD pipelines. Define allowlists of approved domains and IPs.

  • Audit and blocking modes
  • Per-workflow policies
  • Domain and IP allowlists

Real-time Monitoring

Complete visibility into all network connections made by your workflows, including IPs, domains, and processes.

  • Connection tracking
  • Historical analysis

100% Open Source Agent

The agent running on your GitHub-hosted runners is completely open source. No black boxes in your security stack. Inspect and verify every line of code.

  • Fully auditable code
  • Community reviewed
  • Trust through transparency

Easy Integration

Add one step to your workflow file. No infrastructure changes required. Works with all GitHub Actions.

  • Single-line setup
  • Zero maintenance

Risk Assessment

Coming Soon

Comprehensive risk assessment at both workflow and action levels. Complete inventory of third-party actions with security scoring, plus workflow analysis for unpinned actions, secrets exposure, and misconfigurations.

  • Workflow risk scoring & analysis
  • Third-party action inventory & assessment
  • Actionable security recommendations

Smart Alerts

Coming Soon

We value your time. Get notified only when it matters. Intelligent filtering minimizes noise and alert fatigue so you can focus on real threats.

  • Low-noise, high-signal alerts
  • Smart filtering & deduplication
  • Multi-channel delivery (email, Slack, webhooks)

How Bullfrog Works

Protection in three simple steps

1

Install the Github App

Connect your GitHub account and install the Bullfrog GitHub App.

2

Add to Workflows

Add the Bullfrog action to your workflow files and define your egress filtering policies.

3

Monitor & Block

Bullfrog monitors all network connections. View insights in your control plane dashboard.

Free During Beta

Help us shape the future of CI/CD security. All features are free while we build together.

Free

$0/month

Everything you need to secure your pipelines for small teams and open source projects

Up to 5 contributors • Public & private repos

  • Unlimited public & private repos
  • Full egress filtering & blocking
  • Real-time connection monitoring
  • Control plane dashboard
  • Audit mode testing
  • Community support
Get Started Free

No credit card required

Pro

Freeduring beta

Advanced features for teams who want to go deeper. Help us build what you need.

Free while in beta • Your feedback shapes the product

  • Everything in Free, plus:
  • Unlimited contributors
  • Priority support & direct access to our team
  • Early access to new features
  • Risk assessment & workflow analysis (coming soon)
  • Smart alerts (coming soon)
  • Shape the roadmap with your input
Join Beta Program

Completely free during beta • Pricing TBD based on your feedback

Help us build the perfect solution

We're in beta and actively shaping our Pro tier based on real user needs. Join our beta program to get free access to advanced features and help define what comes next. Your feedback directly influences our roadmap and pricing model.

Contact us to join the beta program →

Ready to Secure Your CI/CD Pipelines?

Start blocking unauthorized network connections in your GitHub Actions workflows today. Free for up to 5 contributors with unlimited repositories.

Get Started

Connect your GitHub account to begin

Continue with GitHub
or
Try Demo

No credit card required • 2 minute setup