GitHub Action Compromise Puts CI/CD Secrets at Risk in Over 23,000 Repositories

Written By Auto Tech Monday, 17 March 2025 Add Comment

March 17, 2025 at 03:41PM

Cybersecurity researchers are calling attention to an incident in which the popular GitHub Action tj-actions/changed-files was compromised to leak secrets from repositories using the continuous integration and continuous delivery (CI/CD) workflow. The incident involved the tj-actions/changed-files GitHub Action, which is used in over 23,000 repositories. It's used to track and retrieve all

from The Hacker News https://ift.tt/mp0T9WC

Cybercriminals Exploit CSS to Evade Spam Filters and Track Email Users' Actions
SANS Institute Warns of Novel Cloud-Native Ransomware Attacks
Malicious PyPI Packages Stole Cloud Tokens—Over 14,100 Downloads Before Removal

{ads}

GitHub Action Compromise Puts CI/CD Secrets at Risk in Over 23,000 Repositories

Related

0 Response to "GitHub Action Compromise Puts CI/CD Secrets at Risk in Over 23,000 Repositories"

Post a Comment

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads

{ads}

GitHub Action Compromise Puts CI/CD Secrets at Risk in Over 23,000 Repositories

Related

Related Posts

0 Response to "GitHub Action Compromise Puts CI/CD Secrets at Risk in Over 23,000 Repositories"

Post a Comment

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads