# Security for GitHub Actions

Use security best practices with GitHub Actions, and use GitHub Actions to improve the security of your software supply chain.

## Links

* [Using artifact attestations](/en/actions/how-tos/secure-your-work/use-artifact-attestations)

  Use artifact attestations to establish build provenance for the software you produce and to verify the software you consume.

* [Security hardening your deployments](/en/actions/how-tos/secure-your-work/security-harden-deployments)

  Use OpenID Connect within your workflows to authenticate with your cloud provider.