GitHub Dataset Research Reveals Millions Potentially Vulnerable to RepoJacking (blog.aquasec.com)

submitted 1 year ago by wave_walnut@kbin.social to c/programming@kbin.social

1 comments fedilink hide all child comments

Millions of GitHub repositories are potentially vulnerable to RepoJacking, which if exploited may lead to code execution on environments

you are viewing a single comment's thread
view the rest of the comments

[-] LeberechtReinhold@kbin.social 2 points 1 year ago

I never thought that old organization names became available on Github. After a merge makes sense to keep them locked again or pass ownership to the new owner, not let anyone create that under the old name.

Is there a particular use case it works this way?

That said I doubt this affects millions of orgs, are organization renames that common?

this post was submitted on 25 Jun 2023

2 points (100.0% liked)

Programming

30 readers

1 users here now

This magazine is dedicated to discussions on programming languages, software development, and coding. Whether you are a beginner programmer or an experienced developer, this is the place for you. Here you can share your knowledge, ask questions, and engage in discussions on topics such as coding languages, software engineering, web development, and more. From the latest trends and frameworks to tips and tricks for debugging, this category covers a wide range of topics related to programming.

founded 1 year ago