#githubsecurity 검색 결과
本日はご参加いただきありがとうございました😊 資料を公開しました speakerdeck.com/yuriemori/shen… #DevSecOps #githubsecurity #wakecareer_勉強会
Automate leak detection across all GitHub repositories at once with my script. Powered by Gitleaks. 🔗 nxtexploit.com/urls/5/ #GitHubSecurity #Gitleaks #BugBounty
We've open sourced ActionsGuardHub. This tool helps identify malicious GitHub Actions.(Similar to tj-actions compromise) We'd love for you to try it out and contribute to its development. Check out the repository here: github.com/suchithnarayan… #CyberSecurityMonth #githubsecurity
🕵️♂️ Ever wonder what your GitHub Actions are really doing behind the scenes? With recent incidents like the compromise of popular actions such as tj-actions and reviewdog, the CI/CD supply chain is proving to be a juicy target for attackers.
A recent cascading supply chain attack linked to SpotBugs reveals how a stolen personal access token compromised GitHub Actions, impacting users like Coinbase and exposing major open-source vulnerabilities. 🔐⚠️ #GitHubSecurity #OpenSource link: ift.tt/G3WqvQ5
CISA warns of a critical vulnerability (CVE-2025-30066) in tj-actions/changed-files GitHub Action. Sensitive info at risk! Update to version 46.0.1 to stay secure. 🔒 #GitHubSecurity #DataProtection #USA link: ift.tt/jogWT5C
🚨 GitHub Action tj-actions/changed-files compromised on March 14, 2024, exposing secrets in public repos! This has been tracked as CVE-2025-30066. Recovery actions are essential. #GitHubSecurity #CVE2025 #USA link: ift.tt/ADyr1WH
🚨 Phishing Alert: Nearly 12,000 GitHub repositories have been targeted with fake "Security Alert" issues. Developers misled into authorizing a malicious OAuth app. Stay vigilant! 🔒 #GitHubSecurity #PhishingScam #USA link: ift.tt/nAYEPsU
A major security breach in the tj-actions/changed-files GitHub action exposed sensitive data in over 23,000 repositories. This highlights vulnerabilities in CI/CD pipelines. 🚨 #GitHubSecurity #SupplyChainRisk #USA link: ift.tt/T6EDeI2
CVE-2024-49112 is under scrutiny after a typographical error mislabeling it as CVE-2024-49113 enabled a spoof GitHub repository. Beware of potential malware data collection & FTP risks! 🔒🐱💻 #GitHubSecurity #MalwareAlert #USA link: ift.tt/QSZDIW9
Strengthen your organization's software development environment and protect your intellectual property. Discover the importance of signed commits for code integrity and implement best practices for robust GitHub security. #GitHubSecurity #SignedCommits bit.ly/3WS1wbi
🚨HIGH severity breach: Salesloft & Drift hit by GitHub compromise, stolen OAuth tokens at risk! Audit tokens & enable MFA now. Details: radar.offseq.com/threat/saleslo… #OffSeq #OAuth #GitHubSecurity
GitHub notifications abused to impersonate Y Combinator for crypto theft reconbee.com/github-notific… #githubsecurity #GitHub #cryptotheft #cyberattack
reconbee.com
GitHub notifications abused to impersonate Y Combinator for crypto theft
Batch (W2026) served as the campaign's bait read more about GitHub notifications abused to impersonate Y Combinator for crypto theft
AI used to silently steal code from GitHub repos. A new prompt injection flaw, "CamoLeak," bypassed security. 💻🛡️ 👉 dataconomy.com/2025/10/15/att… #GitHubSecurity, #AICybersecurity, #PromptInjection, #CamoLeak
Guest Post: How I Scanned all of GitHub’s “Oops Commits” for Leaked Secrets #GitHubSecurity #LeakedSecrets #OopsCommits #TruffleHog #BugBounty trufflesecurity.com/blog/guest-pos…
GitHub enforces mandatory 2FA and trusted publishing to secure NPM and RubyGems ecosystems against supply-chain attacks like s1ngularity, GhostAction, and Shai-Hulud. Enhanced security with short-lived tokens. #GitHubSecurity #SupplyChain #npm ift.tt/rBls0Ow
GitHub Advanced SecurityのCode Scanningを導入する際の、開発フローの変化について考えました。 #GitHub #GitHubSecurity techblog.ap-com.co.jp/entry/2025/10/…
#code #GitHub #githubsecurity #CodingJourney #CodingJourney #CodingLife #codingforlife #CodingLife #codingcat #vibecoding
AI used to silently steal code from GitHub repos. A new prompt injection flaw, "CamoLeak," bypassed security. 💻🛡️ 👉 dataconomy.com/2025/10/15/att… #GitHubSecurity, #AICybersecurity, #PromptInjection, #CamoLeak
本日はご参加いただきありがとうございました😊 資料を公開しました speakerdeck.com/yuriemori/shen… #DevSecOps #githubsecurity #wakecareer_勉強会
We've open sourced ActionsGuardHub. This tool helps identify malicious GitHub Actions.(Similar to tj-actions compromise) We'd love for you to try it out and contribute to its development. Check out the repository here: github.com/suchithnarayan… #CyberSecurityMonth #githubsecurity
🕵️♂️ Ever wonder what your GitHub Actions are really doing behind the scenes? With recent incidents like the compromise of popular actions such as tj-actions and reviewdog, the CI/CD supply chain is proving to be a juicy target for attackers.
GitHub compromise led to Drift data breach, impacting 22 companies. Your cloud isn't automatically secure—it's as strong as your weakest configuration. Multi-cloud? Multi-risk without proper governance. #CloudSecurity #DevSecOps #GitHubSecurity #MultiCloud #TechNews
De CTF a Bug Hunter VIP en GitHub! 🤯 Descubre la asombrosa historia de @xiridium, gurú de la seguridad y cazador de vulnerabilidades. Secretos, técnicas y más! 👉 Lee la nota completa: agentegeek.io/ctf-cazador-bu… #BugBounty #GitHubSecurity #CTF
GitHub notifications abused to impersonate Y Combinator for crypto theft reconbee.com/github-notific… #githubsecurity #GitHub #cryptotheft #cyberattack
GitHub enforces mandatory 2FA and trusted publishing to secure NPM and RubyGems ecosystems against supply-chain attacks like s1ngularity, GhostAction, and Shai-Hulud. Enhanced security with short-lived tokens. #GitHubSecurity #SupplyChain #npm ift.tt/rBls0Ow
🔒 Big news for developers! GitHub is mandating 2FA and short-lived tokens by September 2025 to fortify npm supply chain security. Time to secure your accounts! #GitHubSecurity #SupplyChain thehackernews.com/2025/09/github…
🚨 Salesloft confirms a data breach after their GitHub account was compromised! This highlights a critical supply chain vulnerability. A stark reminder to secure all development tools and platforms. #Cybersecurity #GitHubSecurity darkreading.com/cyberattacks-d…
Guest Post: How I Scanned all of GitHub’s “Oops Commits” for Leaked Secrets #GitHubSecurity #LeakedSecrets #OopsCommits #TruffleHog #BugBounty trufflesecurity.com/blog/guest-pos…
GitHub Malware Protection Uncovering the Supply Chain Crisis and Amadey Threat #GitHubSecurity #SupplyChainCrisis #AmadeyMalware #SecretLeaks #DevSecOps ncse.info/github-malware…
ncse.info
GitHub Malware Protection Uncovering the Supply Chain Crisis and Amadey Threat
GitHub malware protection tips and insights from 2025's biggest threats, including Amadey, RepoJacking, and CI/CD supply chain attacks.
🚨HIGH severity breach: Salesloft & Drift hit by GitHub compromise, stolen OAuth tokens at risk! Audit tokens & enable MFA now. Details: radar.offseq.com/threat/saleslo… #OffSeq #OAuth #GitHubSecurity
De CTF a Bug Hunter VIP en GitHub! 🤯 Descubre la asombrosa historia de @xiridium, gurú de la seguridad y cazador de vulnerabilidades. Secretos, técnicas y más! 👉 Lee la nota completa: agentegeek.io/ctf-cazador-bu… #BugBounty #GitHubSecurity #CTF
Automate leak detection across all GitHub repositories at once with my script. Powered by Gitleaks. 🔗 nxtexploit.com/urls/5/ #GitHubSecurity #Gitleaks #BugBounty
A recent cascading supply chain attack linked to SpotBugs reveals how a stolen personal access token compromised GitHub Actions, impacting users like Coinbase and exposing major open-source vulnerabilities. 🔐⚠️ #GitHubSecurity #OpenSource link: ift.tt/G3WqvQ5
CISA warns of a critical vulnerability (CVE-2025-30066) in tj-actions/changed-files GitHub Action. Sensitive info at risk! Update to version 46.0.1 to stay secure. 🔒 #GitHubSecurity #DataProtection #USA link: ift.tt/jogWT5C
🚨 GitHub Action tj-actions/changed-files compromised on March 14, 2024, exposing secrets in public repos! This has been tracked as CVE-2025-30066. Recovery actions are essential. #GitHubSecurity #CVE2025 #USA link: ift.tt/ADyr1WH
🚨 Phishing Alert: Nearly 12,000 GitHub repositories have been targeted with fake "Security Alert" issues. Developers misled into authorizing a malicious OAuth app. Stay vigilant! 🔒 #GitHubSecurity #PhishingScam #USA link: ift.tt/nAYEPsU
A major security breach in the tj-actions/changed-files GitHub action exposed sensitive data in over 23,000 repositories. This highlights vulnerabilities in CI/CD pipelines. 🚨 #GitHubSecurity #SupplyChainRisk #USA link: ift.tt/T6EDeI2
CVE-2024-49112 is under scrutiny after a typographical error mislabeling it as CVE-2024-49113 enabled a spoof GitHub repository. Beware of potential malware data collection & FTP risks! 🔒🐱💻 #GitHubSecurity #MalwareAlert #USA link: ift.tt/QSZDIW9
Strengthen your organization's software development environment and protect your intellectual property. Discover the importance of signed commits for code integrity and implement best practices for robust GitHub security. #GitHubSecurity #SignedCommits bit.ly/3WS1wbi
🚨HIGH severity breach: Salesloft & Drift hit by GitHub compromise, stolen OAuth tokens at risk! Audit tokens & enable MFA now. Details: radar.offseq.com/threat/saleslo… #OffSeq #OAuth #GitHubSecurity
CISA has flagged a critical vulnerability (CVE-2025-30066) in GitHub Actions, exposing sensitive data through malicious code. Affected users must update to prevent exploitation. ⚠️ #GitHubSecurity #Vulnerability #USA link: ift.tt/VkUQD1u
A vulnerability (CVE-2025-30066) in tj-actions/changed-files has been detected. Integrating Falco Actions into CI/CD workflows can enhance security and visibility against such threats. 🛡️ #GitHubSecurity #Falco #USA link: ift.tt/4YLmDEI
GitHub has taken a significant step in enhancing security by enabling push protection by default for all public repositories, aiming to prevent inadvertent exposure of sensitive information like access tokens and API keys during code pushes. . #avmconsulting #GitHubSecurity
🚨 CRITICAL vuln in RSSNext Folo (<585c6a5914) lets attackers steal GITHUB_TOKEN & hijack repos! Update now to stay safe. 🔒 radar.offseq.com/threat/cve-202… #OffSeq #Vulnerability #GitHubSecurity
🚨 CRITICAL: Command injection in gluestack-ui < e6b4271 via GitHub Actions. Devs: Remove discussion-to-slack.yml ASAP! 🔒 radar.offseq.com/threat/cve-202… #OffSeq #AppSec #GitHubSecurity
🚨 CRITICAL: astronomer dag-factory (<0.23.0a9) lets attackers run code via GitHub Actions—repo takeover risk! Patch ASAP. radar.offseq.com/threat/cve-202… #OffSeq #InfoSec #GitHubSecurity
⚠️ CRITICAL CVE-2025-53624 in docusaurus-plugin-content-gists (<4.0.0): GitHub PATs exposed in client JS! Upgrade now to protect your code. 🔒 radar.offseq.com/threat/cve-202… #OffSeq #CVE2025 #GitHubSecurity
🚨 CRITICAL: Command injection flaw in tj-actions/branch-names <9.0.0! Upgrade now to protect your CI/CD pipelines. Affects GitHub Actions. Details: radar.offseq.com/threat/cve-202… #OffSeq #GitHubSecurity #CICD
Criminals exploit GitHub's infrastructure for widespread malware delivery, as revealed by security researchers at Recorded Future. Stay vigilant online! 🔐 #GitHubSecurity #MalwareThreats #CyberSafety
Something went wrong.
Something went wrong.
United States Trends
- 1. #WorldSeries 95.4K posts
- 2. Kershaw 15.1K posts
- 3. Ohtani 86.4K posts
- 4. #Dodgers 17.9K posts
- 5. Freddie 14.9K posts
- 6. Mookie 11K posts
- 7. Tommy Edman 4,522 posts
- 8. Draymond 5,658 posts
- 9. Vladdy 8,301 posts
- 10. Dave Roberts 3,887 posts
- 11. Lukes 2,625 posts
- 12. Chiefs 83.5K posts
- 13. #BlueJays 10.6K posts
- 14. Alex Call 1,223 posts
- 15. Grokipedia 45.1K posts
- 16. Schneider 9,666 posts
- 17. #WWERaw 47.2K posts
- 18. Sheehan 2,174 posts
- 19. Wikipedia 45K posts
- 20. Mahomes 26.4K posts