#githubsecurity 검색 결과
Guest Post: How I Scanned all of GitHub’s “Oops Commits” for Leaked Secrets #GitHubSecurity #LeakedSecrets #OopsCommits #TruffleHog #BugBounty trufflesecurity.com/blog/guest-pos…
🚨HIGH severity breach: Salesloft & Drift hit by GitHub compromise, stolen OAuth tokens at risk! Audit tokens & enable MFA now. Details: radar.offseq.com/threat/saleslo… #OffSeq #OAuth #GitHubSecurity
AI used to silently steal code from GitHub repos. A new prompt injection flaw, "CamoLeak," bypassed security. 💻🛡️ 👉 dataconomy.com/2025/10/15/att… #GitHubSecurity, #AICybersecurity, #PromptInjection, #CamoLeak
GitHub enforces mandatory 2FA and trusted publishing to secure NPM and RubyGems ecosystems against supply-chain attacks like s1ngularity, GhostAction, and Shai-Hulud. Enhanced security with short-lived tokens. #GitHubSecurity #SupplyChain #npm ift.tt/rBls0Ow
We've open sourced ActionsGuardHub. This tool helps identify malicious GitHub Actions.(Similar to tj-actions compromise) We'd love for you to try it out and contribute to its development. Check out the repository here: github.com/suchithnarayan… #CyberSecurityMonth #githubsecurity
🕵️♂️ Ever wonder what your GitHub Actions are really doing behind the scenes? With recent incidents like the compromise of popular actions such as tj-actions and reviewdog, the CI/CD supply chain is proving to be a juicy target for attackers.
本日はご参加いただきありがとうございました😊 資料を公開しました speakerdeck.com/yuriemori/shen… #DevSecOps #githubsecurity #wakecareer_勉強会
GitHub notifications abused to impersonate Y Combinator for crypto theft reconbee.com/github-notific… #githubsecurity #GitHub #cryptotheft #cyberattack
Automate leak detection across all GitHub repositories at once with my script. Powered by Gitleaks. 🔗 nxtexploit.com/urls/5/ #GitHubSecurity #Gitleaks #BugBounty
Socket uncovers 11 malicious Go packages, including 8 typosquats, on GitHub. The packages deliver stealthy, in-memory payloads that compromise developer machines and CI pipelines. #GoMalware #SupplyChainAttack #GitHubSecurity #GoLang #CybersecurityAlert securityonline.info/the-malicious-…
🚨 Quick shout to @GitHubSecurity and @Hacker0x01 Team 🚨 🔍 I reported a vulnerablity on GitHub (Report ID: 2316102). Got marked "informative," but triager missed the important stuff/ 📢 Please check again! I need your help to fix it. 🙏 #BugBounty #GitHubSecurity #HackerOne
New Post: Force Push Scanner – Hunt GitHub Dangling Commits for Leaked Secrets Force Push Scanner hunts leaked secrets in GitHub force‑push events, to find exposed credentials in ephemeral commits darknet.org.uk/2025/07/force-… #githubsecurity #hackingtools #secretmanagement #infosec
New Post: claws – GitHub Actions Workflow Linter for Secure CI/CD Pipelines claws is a GitHub Actions workflow linter that helps secure your CI/CD pipeline by identifying misconfigurations. darknet.org.uk/2025/06/claws-… #githubsecurity #githubactions #codesecurity #cloudsecurity
GitHub Malware Protection Uncovering the Supply Chain Crisis and Amadey Threat #GitHubSecurity #SupplyChainCrisis #AmadeyMalware #SecretLeaks #DevSecOps ncse.info/github-malware…
Pushed Sensitive Data by Mistake—Who Else Wants a Repo‐Scanning Alert? #saas #DevSecOps #GitHubSecurity #CodeSecurity #SecretManagement #InfoSec #CyberSecurity #OpenSourceSecurity #DevOps #GitHub #AppSec #SecOps #LeakPrevention
Have you ever wandered into the realm of GitHub API authentication? In case you did, you have arrived in the right spot. - hackernoon.com/access-github-… #githubsecurity #githubapiauthentication
An experiment uncovering how a possible vulnerability with Github action workflows exposed Ledger's NPM keys. - hackernoon.com/how-a-compromi… #github #githubsecurity
hackernoon.com
How a Compromised NPM Package Revealed GitHub Workflow Vulnerabilities | HackerNoon
An experiment uncovering how a possible vulnerability with Github action workflows exposed Ledger's NPM keys.
#code #GitHub #githubsecurity #CodingJourney #CodingJourney #CodingLife #codingforlife #CodingLife #codingcat #vibecoding
AI used to silently steal code from GitHub repos. A new prompt injection flaw, "CamoLeak," bypassed security. 💻🛡️ 👉 dataconomy.com/2025/10/15/att… #GitHubSecurity, #AICybersecurity, #PromptInjection, #CamoLeak
本日はご参加いただきありがとうございました😊 資料を公開しました speakerdeck.com/yuriemori/shen… #DevSecOps #githubsecurity #wakecareer_勉強会
We've open sourced ActionsGuardHub. This tool helps identify malicious GitHub Actions.(Similar to tj-actions compromise) We'd love for you to try it out and contribute to its development. Check out the repository here: github.com/suchithnarayan… #CyberSecurityMonth #githubsecurity
🕵️♂️ Ever wonder what your GitHub Actions are really doing behind the scenes? With recent incidents like the compromise of popular actions such as tj-actions and reviewdog, the CI/CD supply chain is proving to be a juicy target for attackers.
GitHub compromise led to Drift data breach, impacting 22 companies. Your cloud isn't automatically secure—it's as strong as your weakest configuration. Multi-cloud? Multi-risk without proper governance. #CloudSecurity #DevSecOps #GitHubSecurity #MultiCloud #TechNews
De CTF a Bug Hunter VIP en GitHub! 🤯 Descubre la asombrosa historia de @xiridium, gurú de la seguridad y cazador de vulnerabilidades. Secretos, técnicas y más! 👉 Lee la nota completa: agentegeek.io/ctf-cazador-bu… #BugBounty #GitHubSecurity #CTF
GitHub notifications abused to impersonate Y Combinator for crypto theft reconbee.com/github-notific… #githubsecurity #GitHub #cryptotheft #cyberattack
GitHub enforces mandatory 2FA and trusted publishing to secure NPM and RubyGems ecosystems against supply-chain attacks like s1ngularity, GhostAction, and Shai-Hulud. Enhanced security with short-lived tokens. #GitHubSecurity #SupplyChain #npm ift.tt/rBls0Ow
🔒 Big news for developers! GitHub is mandating 2FA and short-lived tokens by September 2025 to fortify npm supply chain security. Time to secure your accounts! #GitHubSecurity #SupplyChain thehackernews.com/2025/09/github…
🚨 Salesloft confirms a data breach after their GitHub account was compromised! This highlights a critical supply chain vulnerability. A stark reminder to secure all development tools and platforms. #Cybersecurity #GitHubSecurity darkreading.com/cyberattacks-d…
Guest Post: How I Scanned all of GitHub’s “Oops Commits” for Leaked Secrets #GitHubSecurity #LeakedSecrets #OopsCommits #TruffleHog #BugBounty trufflesecurity.com/blog/guest-pos…
GitHub Malware Protection Uncovering the Supply Chain Crisis and Amadey Threat #GitHubSecurity #SupplyChainCrisis #AmadeyMalware #SecretLeaks #DevSecOps ncse.info/github-malware…
🚨HIGH severity breach: Salesloft & Drift hit by GitHub compromise, stolen OAuth tokens at risk! Audit tokens & enable MFA now. Details: radar.offseq.com/threat/saleslo… #OffSeq #OAuth #GitHubSecurity
De CTF a Bug Hunter VIP en GitHub! 🤯 Descubre la asombrosa historia de @xiridium, gurú de la seguridad y cazador de vulnerabilidades. Secretos, técnicas y más! 👉 Lee la nota completa: agentegeek.io/ctf-cazador-bu… #BugBounty #GitHubSecurity #CTF
Automate leak detection across all GitHub repositories at once with my script. Powered by Gitleaks. 🔗 nxtexploit.com/urls/5/ #GitHubSecurity #Gitleaks #BugBounty
A recent cascading supply chain attack linked to SpotBugs reveals how a stolen personal access token compromised GitHub Actions, impacting users like Coinbase and exposing major open-source vulnerabilities. 🔐⚠️ #GitHubSecurity #OpenSource link: ift.tt/G3WqvQ5
🚨HIGH severity breach: Salesloft & Drift hit by GitHub compromise, stolen OAuth tokens at risk! Audit tokens & enable MFA now. Details: radar.offseq.com/threat/saleslo… #OffSeq #OAuth #GitHubSecurity
CISA has flagged a critical vulnerability (CVE-2025-30066) in GitHub Actions, exposing sensitive data through malicious code. Affected users must update to prevent exploitation. ⚠️ #GitHubSecurity #Vulnerability #USA link: ift.tt/VkUQD1u
CISA warns of a critical vulnerability (CVE-2025-30066) in tj-actions/changed-files GitHub Action. Sensitive info at risk! Update to version 46.0.1 to stay secure. 🔒 #GitHubSecurity #DataProtection #USA link: ift.tt/jogWT5C
A major security breach in the tj-actions/changed-files GitHub action exposed sensitive data in over 23,000 repositories. This highlights vulnerabilities in CI/CD pipelines. 🚨 #GitHubSecurity #SupplyChainRisk #USA link: ift.tt/T6EDeI2
🚨 Phishing Alert: Nearly 12,000 GitHub repositories have been targeted with fake "Security Alert" issues. Developers misled into authorizing a malicious OAuth app. Stay vigilant! 🔒 #GitHubSecurity #PhishingScam #USA link: ift.tt/nAYEPsU
🚨 GitHub Action tj-actions/changed-files compromised on March 14, 2024, exposing secrets in public repos! This has been tracked as CVE-2025-30066. Recovery actions are essential. #GitHubSecurity #CVE2025 #USA link: ift.tt/ADyr1WH
🚨 CRITICAL vuln in RSSNext Folo (<585c6a5914) lets attackers steal GITHUB_TOKEN & hijack repos! Update now to stay safe. 🔒 radar.offseq.com/threat/cve-202… #OffSeq #Vulnerability #GitHubSecurity
🚨 CRITICAL: Command injection in gluestack-ui < e6b4271 via GitHub Actions. Devs: Remove discussion-to-slack.yml ASAP! 🔒 radar.offseq.com/threat/cve-202… #OffSeq #AppSec #GitHubSecurity
🚨 CRITICAL: astronomer dag-factory (<0.23.0a9) lets attackers run code via GitHub Actions—repo takeover risk! Patch ASAP. radar.offseq.com/threat/cve-202… #OffSeq #InfoSec #GitHubSecurity
A vulnerability (CVE-2025-30066) in tj-actions/changed-files has been detected. Integrating Falco Actions into CI/CD workflows can enhance security and visibility against such threats. 🛡️ #GitHubSecurity #Falco #USA link: ift.tt/4YLmDEI
⚠️ CRITICAL CVE-2025-53624 in docusaurus-plugin-content-gists (<4.0.0): GitHub PATs exposed in client JS! Upgrade now to protect your code. 🔒 radar.offseq.com/threat/cve-202… #OffSeq #CVE2025 #GitHubSecurity
CVE-2024-49112 is under scrutiny after a typographical error mislabeling it as CVE-2024-49113 enabled a spoof GitHub repository. Beware of potential malware data collection & FTP risks! 🔒🐱💻 #GitHubSecurity #MalwareAlert #USA link: ift.tt/QSZDIW9
🚨 CRITICAL: Command injection flaw in tj-actions/branch-names <9.0.0! Upgrade now to protect your CI/CD pipelines. Affects GitHub Actions. Details: radar.offseq.com/threat/cve-202… #OffSeq #GitHubSecurity #CICD
GitHub has taken a significant step in enhancing security by enabling push protection by default for all public repositories, aiming to prevent inadvertent exposure of sensitive information like access tokens and API keys during code pushes. . #avmconsulting #GitHubSecurity
Elevate your GitHub security! Understand the critical role of signed commits in protecting your intellectual property and ensuring code integrity. #GitHubSecurity #SignedCommits bit.ly/4dvZRxg
Protect your code and intellectual property by implementing signed commits. Discover essential best practices for a secure software development environment on GitHub. #GitHubSecurity #SignedCommits bit.ly/3WAbZGP
Something went wrong.
Something went wrong.
United States Trends
- 1. #WorldSeries 96.9K posts
- 2. Blue Jays 68.4K posts
- 3. Luka 58.4K posts
- 4. Snell 13.4K posts
- 5. #SmackDown 30.8K posts
- 6. #Dodgers 14.1K posts
- 7. Mavs 10.7K posts
- 8. Kyshawn George 3,090 posts
- 9. Addison Barger 13.2K posts
- 10. #BostonBlue 5,303 posts
- 11. #WANTITALL 38.6K posts
- 12. Virginia Tech 4,407 posts
- 13. Sheehan 2,087 posts
- 14. Wizards 8,957 posts
- 15. Paolo 13.1K posts
- 16. Grand Slam 23.6K posts
- 17. Zion 21.8K posts
- 18. Paul Reed N/A
- 19. Game 1 635K posts
- 20. Celtics 22.4K posts