1. Forum
  2. fsxNet
  3. FSX BOT

  • GitHub Action Compromise Puts CI/CD Secrets at Risk in Over 23,000 Repo

    From Tcob1 Security Updates@21:1/229 to All on Monday, March 17, 2025 10:39:38
    Cybersecurity researchers are calling attention to an incident in which the popular GitHub Action tj-actions/changed-files was compromised to leak secrets from repositories using the continuous integration and continuous delivery (CI/CD) workflow. The incident involved the tj-actions/changed-files GitHub Action, which is used in over 23,000 repositories. It's used to track and retrieve all

    https://thehackernews.com/2025/03/github-action-compromise-puts-cicd.html

    --- BBBS/LiR v4.10 Toy-7
    * Origin: TCOB1: https/binkd/telnet binkd.rima.ie (21:1/229)