Resident PulserB to

Pulse of TruthEnglish · 28 days ago

GitHub Actions artifacts found leaking auth tokens in popular projects

www.bleepingcomputer.com

1

cross-posted to:
cybersecurity@sh.itjust.works

2

GitHub Actions artifacts found leaking auth tokens in popular projects

www.bleepingcomputer.com

Resident PulserB to

Pulse of TruthEnglish · 28 days ago

1

cross-posted to:
cybersecurity@sh.itjust.works

Just a moment...

www.bleepingcomputer.com

Multiple high-profile open-source projects, including those from Google, Microsoft, AWS, and Red Hat, were found to leak GitHub authentication tokens through GitHub Actions artifacts in CI/CD workflows. […]

You must log in or register to comment.

Chat

JakenVeina@lemm.ee
link
fedilink
English
arrow-up
1·
28 days ago

Multiple high-profile open-source projects

steal source code

wat

Pulse of Truth

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !pulse_of_truth@infosec.pub

Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).

This community is automagically fed by an instance of Dittybopper.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

89 users / day
343 users / week
1.2K users / month
2.91K users / 6 months
75 local subscribers
400 subscribers
1.53K Posts
888 Comments
Modlog

mods:
krogoth