InfoWorld13d
Thousands of open source projects at risk from hack of GitHub Actions tool
Researchers say compromised tool in the GitHub CI/CD environment stole credentials; infosec leaders need to act immediately.
SecurityWeek8d
Impact, Root Cause of GitHub Actions Supply Chain Hack Revealed
More details have come to light on the recent supply chain attack targeting GitHub Actions, including its root cause.
GitHub Action hack likely led to another in cascading supply chain attack
A cascading supply chain attack that began with the compromise of the "reviewdog/action-setup@v1" GitHub Action is believed ...
Hackaday8y
Geohot’s Comma.ai Self-Driving Code On GitHub
comma.ai’s openpilot project shows up on GitHub! If you’ve got either an ... A quick browse through the code gives some clues as to what’s going on here. The board files show just how ...