#githubsecurity 搜尋結果
Automate leak detection across all GitHub repositories at once with my script. Powered by Gitleaks. 🔗 nxtexploit.com/urls/5/ #GitHubSecurity #Gitleaks #BugBounty
GitHub has taken a significant step in enhancing security by enabling push protection by default for all public repositories, aiming to prevent inadvertent exposure of sensitive information like access tokens and API keys during code pushes. . #avmconsulting #GitHubSecurity
A recent cascading supply chain attack linked to SpotBugs reveals how a stolen personal access token compromised GitHub Actions, impacting users like Coinbase and exposing major open-source vulnerabilities. 🔐⚠️ #GitHubSecurity #OpenSource link: ift.tt/G3WqvQ5
We've open sourced ActionsGuardHub. This tool helps identify malicious GitHub Actions.(Similar to tj-actions compromise) We'd love for you to try it out and contribute to its development. Check out the repository here: github.com/suchithnarayan… #CyberSecurityMonth #githubsecurity
🕵️♂️ Ever wonder what your GitHub Actions are really doing behind the scenes? With recent incidents like the compromise of popular actions such as tj-actions and reviewdog, the CI/CD supply chain is proving to be a juicy target for attackers.
Criminals exploit GitHub's infrastructure for widespread malware delivery, as revealed by security researchers at Recorded Future. Stay vigilant online! 🔐 #GitHubSecurity #MalwareThreats #CyberSafety
CISA has flagged a critical vulnerability (CVE-2025-30066) in GitHub Actions, exposing sensitive data through malicious code. Affected users must update to prevent exploitation. ⚠️ #GitHubSecurity #Vulnerability #USA link: ift.tt/VkUQD1u
Guest Post: How I Scanned all of GitHub’s “Oops Commits” for Leaked Secrets #GitHubSecurity #LeakedSecrets #OopsCommits #TruffleHog #BugBounty trufflesecurity.com/blog/guest-pos…
CISA warns of a critical vulnerability (CVE-2025-30066) in tj-actions/changed-files GitHub Action. Sensitive info at risk! Update to version 46.0.1 to stay secure. 🔒 #GitHubSecurity #DataProtection #USA link: ift.tt/jogWT5C
Elevate your GitHub security! Understand the critical role of signed commits in protecting your intellectual property and ensuring code integrity. #GitHubSecurity #SignedCommits bit.ly/4dvZRxg
🚨 GitHub Action tj-actions/changed-files compromised on March 14, 2024, exposing secrets in public repos! This has been tracked as CVE-2025-30066. Recovery actions are essential. #GitHubSecurity #CVE2025 #USA link: ift.tt/ADyr1WH
🚨 Phishing Alert: Nearly 12,000 GitHub repositories have been targeted with fake "Security Alert" issues. Developers misled into authorizing a malicious OAuth app. Stay vigilant! 🔒 #GitHubSecurity #PhishingScam #USA link: ift.tt/nAYEPsU
A major security breach in the tj-actions/changed-files GitHub action exposed sensitive data in over 23,000 repositories. This highlights vulnerabilities in CI/CD pipelines. 🚨 #GitHubSecurity #SupplyChainRisk #USA link: ift.tt/T6EDeI2
GitHub enforces mandatory 2FA and trusted publishing to secure NPM and RubyGems ecosystems against supply-chain attacks like s1ngularity, GhostAction, and Shai-Hulud. Enhanced security with short-lived tokens. #GitHubSecurity #SupplyChain #npm ift.tt/rBls0Ow
🚨 Alert! Critical flaw in GitHub Enterprise Server (GHES) allows unauthorized access. Patch immediately! 🔒 #GitHubSecurity #PatchNow Read more buff.ly/3KciJVv
CVE-2024-49112 is under scrutiny after a typographical error mislabeling it as CVE-2024-49113 enabled a spoof GitHub repository. Beware of potential malware data collection & FTP risks! 🔒🐱💻 #GitHubSecurity #MalwareAlert #USA link: ift.tt/QSZDIW9
A vulnerability (CVE-2025-30066) in tj-actions/changed-files has been detected. Integrating Falco Actions into CI/CD workflows can enhance security and visibility against such threats. 🛡️ #GitHubSecurity #Falco #USA link: ift.tt/4YLmDEI
#code #GitHub #githubsecurity #CodingJourney #CodingJourney #CodingLife #codingforlife #CodingLife #codingcat #vibecoding
AI used to silently steal code from GitHub repos. A new prompt injection flaw, "CamoLeak," bypassed security. 💻🛡️ 👉 dataconomy.com/2025/10/15/att… #GitHubSecurity, #AICybersecurity, #PromptInjection, #CamoLeak
本日はご参加いただきありがとうございました😊 資料を公開しました speakerdeck.com/yuriemori/shen… #DevSecOps #githubsecurity #wakecareer_勉強会
We've open sourced ActionsGuardHub. This tool helps identify malicious GitHub Actions.(Similar to tj-actions compromise) We'd love for you to try it out and contribute to its development. Check out the repository here: github.com/suchithnarayan… #CyberSecurityMonth #githubsecurity
🕵️♂️ Ever wonder what your GitHub Actions are really doing behind the scenes? With recent incidents like the compromise of popular actions such as tj-actions and reviewdog, the CI/CD supply chain is proving to be a juicy target for attackers.
GitHub compromise led to Drift data breach, impacting 22 companies. Your cloud isn't automatically secure—it's as strong as your weakest configuration. Multi-cloud? Multi-risk without proper governance. #CloudSecurity #DevSecOps #GitHubSecurity #MultiCloud #TechNews
De CTF a Bug Hunter VIP en GitHub! 🤯 Descubre la asombrosa historia de @xiridium, gurú de la seguridad y cazador de vulnerabilidades. Secretos, técnicas y más! 👉 Lee la nota completa: agentegeek.io/ctf-cazador-bu… #BugBounty #GitHubSecurity #CTF
GitHub notifications abused to impersonate Y Combinator for crypto theft reconbee.com/github-notific… #githubsecurity #GitHub #cryptotheft #cyberattack
GitHub enforces mandatory 2FA and trusted publishing to secure NPM and RubyGems ecosystems against supply-chain attacks like s1ngularity, GhostAction, and Shai-Hulud. Enhanced security with short-lived tokens. #GitHubSecurity #SupplyChain #npm ift.tt/rBls0Ow
🔒 Big news for developers! GitHub is mandating 2FA and short-lived tokens by September 2025 to fortify npm supply chain security. Time to secure your accounts! #GitHubSecurity #SupplyChain thehackernews.com/2025/09/github…
thehackernews.com
GitHub Mandates 2FA and Short-Lived Tokens to Strengthen npm Supply Chain Security
GitHub enforces FIDO 2FA and seven-day token limits after Shai-Hulud npm attack to boost supply chain security.
🚨 Salesloft confirms a data breach after their GitHub account was compromised! This highlights a critical supply chain vulnerability. A stark reminder to secure all development tools and platforms. #Cybersecurity #GitHubSecurity darkreading.com/cyberattacks-d…
Guest Post: How I Scanned all of GitHub’s “Oops Commits” for Leaked Secrets #GitHubSecurity #LeakedSecrets #OopsCommits #TruffleHog #BugBounty trufflesecurity.com/blog/guest-pos…
GitHub Malware Protection Uncovering the Supply Chain Crisis and Amadey Threat #GitHubSecurity #SupplyChainCrisis #AmadeyMalware #SecretLeaks #DevSecOps ncse.info/github-malware…
🚨HIGH severity breach: Salesloft & Drift hit by GitHub compromise, stolen OAuth tokens at risk! Audit tokens & enable MFA now. Details: radar.offseq.com/threat/saleslo… #OffSeq #OAuth #GitHubSecurity
Automate leak detection across all GitHub repositories at once with my script. Powered by Gitleaks. 🔗 nxtexploit.com/urls/5/ #GitHubSecurity #Gitleaks #BugBounty
De CTF a Bug Hunter VIP en GitHub! 🤯 Descubre la asombrosa historia de @xiridium, gurú de la seguridad y cazador de vulnerabilidades. Secretos, técnicas y más! 👉 Lee la nota completa: agentegeek.io/ctf-cazador-bu… #BugBounty #GitHubSecurity #CTF
A recent cascading supply chain attack linked to SpotBugs reveals how a stolen personal access token compromised GitHub Actions, impacting users like Coinbase and exposing major open-source vulnerabilities. 🔐⚠️ #GitHubSecurity #OpenSource link: ift.tt/G3WqvQ5
CISA has flagged a critical vulnerability (CVE-2025-30066) in GitHub Actions, exposing sensitive data through malicious code. Affected users must update to prevent exploitation. ⚠️ #GitHubSecurity #Vulnerability #USA link: ift.tt/VkUQD1u
CISA warns of a critical vulnerability (CVE-2025-30066) in tj-actions/changed-files GitHub Action. Sensitive info at risk! Update to version 46.0.1 to stay secure. 🔒 #GitHubSecurity #DataProtection #USA link: ift.tt/jogWT5C
🚨 GitHub Action tj-actions/changed-files compromised on March 14, 2024, exposing secrets in public repos! This has been tracked as CVE-2025-30066. Recovery actions are essential. #GitHubSecurity #CVE2025 #USA link: ift.tt/ADyr1WH
🚨 Phishing Alert: Nearly 12,000 GitHub repositories have been targeted with fake "Security Alert" issues. Developers misled into authorizing a malicious OAuth app. Stay vigilant! 🔒 #GitHubSecurity #PhishingScam #USA link: ift.tt/nAYEPsU
A major security breach in the tj-actions/changed-files GitHub action exposed sensitive data in over 23,000 repositories. This highlights vulnerabilities in CI/CD pipelines. 🚨 #GitHubSecurity #SupplyChainRisk #USA link: ift.tt/T6EDeI2
A vulnerability (CVE-2025-30066) in tj-actions/changed-files has been detected. Integrating Falco Actions into CI/CD workflows can enhance security and visibility against such threats. 🛡️ #GitHubSecurity #Falco #USA link: ift.tt/4YLmDEI
CVE-2024-49112 is under scrutiny after a typographical error mislabeling it as CVE-2024-49113 enabled a spoof GitHub repository. Beware of potential malware data collection & FTP risks! 🔒🐱💻 #GitHubSecurity #MalwareAlert #USA link: ift.tt/QSZDIW9
🚨 CRITICAL vuln in RSSNext Folo (<585c6a5914) lets attackers steal GITHUB_TOKEN & hijack repos! Update now to stay safe. 🔒 radar.offseq.com/threat/cve-202… #OffSeq #Vulnerability #GitHubSecurity
🚨 CRITICAL: Command injection in gluestack-ui < e6b4271 via GitHub Actions. Devs: Remove discussion-to-slack.yml ASAP! 🔒 radar.offseq.com/threat/cve-202… #OffSeq #AppSec #GitHubSecurity
🚨 CRITICAL: astronomer dag-factory (<0.23.0a9) lets attackers run code via GitHub Actions—repo takeover risk! Patch ASAP. radar.offseq.com/threat/cve-202… #OffSeq #InfoSec #GitHubSecurity
⚠️ CRITICAL CVE-2025-53624 in docusaurus-plugin-content-gists (<4.0.0): GitHub PATs exposed in client JS! Upgrade now to protect your code. 🔒 radar.offseq.com/threat/cve-202… #OffSeq #CVE2025 #GitHubSecurity
🚨 CRITICAL: Command injection flaw in tj-actions/branch-names <9.0.0! Upgrade now to protect your CI/CD pipelines. Affects GitHub Actions. Details: radar.offseq.com/threat/cve-202… #OffSeq #GitHubSecurity #CICD
GitHub has taken a significant step in enhancing security by enabling push protection by default for all public repositories, aiming to prevent inadvertent exposure of sensitive information like access tokens and API keys during code pushes. . #avmconsulting #GitHubSecurity
🚨HIGH severity breach: Salesloft & Drift hit by GitHub compromise, stolen OAuth tokens at risk! Audit tokens & enable MFA now. Details: radar.offseq.com/threat/saleslo… #OffSeq #OAuth #GitHubSecurity
Elevate your GitHub security! Understand the critical role of signed commits in protecting your intellectual property and ensuring code integrity. #GitHubSecurity #SignedCommits bit.ly/4dvZRxg
🚨 Alert! Critical flaw in GitHub Enterprise Server (GHES) allows unauthorized access. Patch immediately! 🔒 #GitHubSecurity #PatchNow Read more buff.ly/3KciJVv
Something went wrong.
Something went wrong.
United States Trends
- 1. #VERZUZ 44.3K posts
- 2. Brian Kelly 6,763 posts
- 3. Yamamoto 30.2K posts
- 4. Birdman 11.4K posts
- 5. No Limit 30.1K posts
- 6. Mia X 595K posts
- 7. Cash Money 26.8K posts
- 8. Wayne 36.9K posts
- 9. #HalloweenHavoc 45.2K posts
- 10. Turk 576K posts
- 11. Tamar 7,949 posts
- 12. Jonas Brothers 5,395 posts
- 13. Master P 6,352 posts
- 14. Snoop 9,883 posts
- 15. Michigan 35.4K posts
- 16. Sixers 7,639 posts
- 17. Texas A&M 7,741 posts
- 18. Juvie 3,580 posts
- 19. Nuss 3,062 posts
- 20. Tim Banks 1,071 posts