GitHub Actions artifacts found leaking auth tokens in popular projects (www.bleepingcomputer.com)

submitted 2 months ago by lemmydev2@infosec.pub to c/pulse_of_truth@infosec.pub

1 comments fedilink hide all child comments

Multiple high-profile open-source projects, including those from Google, Microsoft, AWS, and Red Hat, were found to leak GitHub authentication tokens through GitHub Actions artifacts in CI/CD workflows. [...]

top 1 comments

sorted by: hot top controversial new old

[-] JakenVeina@lemm.ee 1 points 2 months ago

Multiple high-profile open-source projects

steal source code

wat

this post was submitted on 14 Aug 2024

2 points (66.7% liked)

Pulse of Truth

458 readers

363 users here now

Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).

This community is automagically fed by an instance of Dittybopper.

founded 1 year ago

MODERATORS

krogoth@infosec.pub