CISA confirms cascading attack from reviewdog to tj-actions exposed sensitive credentials across 23,000+ repositories.
A cascading supply chain attack that began with the compromise of the "reviewdog/action-setup@v1" GitHub Action is believed ...
Learn GitHub basics with this beginner's guide! Master repositories, branches, commits, and pull requests to streamline your ...
The open source tool tjactions/changed-files searched for sensitive information in the CI process with GitHub Actions and ...
StepSecurity disclosed a compromise of the popular GitHub Action tj-actions/changed-files, which works to detect file changes ...
A compromise of the popular GitHub Actions tool turned into a massive supply chain attack, at this point thought to be ...
GitHub Action tj-actions/changed-files was compromised, leaking CI/CD secrets. Users must update immediately to prevent ...
Open source software used by more than 23,000 organizations, some of them in large enterprises, was compromised with ...
The tj-actions/changed-files GitHub Action, which is used in 23,000 repositories, has been targeted in a supply chain attack.
CISA warns of CVE-2025-30066, a GitHub supply chain attack exposing secrets via compromised actions logs. Update ...
Tens of thousands of repositories have fallen victim to a supply chain attack via a GitHub Action. Security specialists at ...
Results that may be inaccessible to you are currently showing.
Hide inaccessible results
Feedback