For a second time in less than a year, the Travis CI platform for software development and testing has exposed user data containing authentication tokens that could give access to developers’ accounts ...
GitHub is introducing a set of defenses against supply-chain attacks on the platform that led to multiple large-scale ...
In the light of recent supply chain attacks targeting the NPM ecosystem, GitHub will implement tighter authentication and ...
GitHub enforces FIDO 2FA and seven-day token limits after Shai-Hulud npm attack to boost supply chain security.
Documentation startup Mintlify says dozens of customers had GitHub tokens exposed in a data breach at the start of the month and publicly disclosed last week. Mintlify helps developers create ...
Build artifacts generated by GitHub Actions often contain access tokens that can be abused by attackers to push malicious code into projects or compromise cloud infrastructure. An analysis of build ...
Hackers planted malicious code in open source software packages with more than 2 billion weekly updates in what is likely to ...
Waydev, an analytics platform used by software companies, has disclosed a security breach earlier this month. The company says that hackers broke into its platform and stole GitHub and GitLab OAuth ...
Developers from hundreds of companies have included access tokens for their Slack accounts in public projects on GitHub, putting their teams’ internal chats and other data at risk. Slack has become ...
Results that may be inaccessible to you are currently showing.
Hide inaccessible results
Feedback