News

GitHub11mon
jstawinski/GitHub-Actions-Attack-Diagram
The diagram outlines common attack paths John Stawinski and Adnan Khan used on Red Team engagements and during public vulnerability research. We presented this research in-depth at Black Hat USA 2024 ...
GitHub1y
Kesin11/actions-timeline: An Action shows timeline of a workflow in a run summary. - GitHub
actions-timeline fetches the jobs and steps of the workflow run from the GitHub API, and then generates a timeline with mermaid gantt diagrams. Thanks to the GitHub flavored markdown that can ...
TechCrunch6y
GitHub launches Actions, its workflow automation tool
GitHub users can use Actions to build their continuous delivery pipelines, and the company expects that many will do so. And that’s pretty much the first thing most people will think about when ...
Bleeping Computer2mon
Recent GitHub supply chain attack traced to leaked SpotBugs token - BleepingComputer
A cascading supply chain attack on GitHub that targeted Coinbase in March has now been traced back to a single token stolen from a SpotBugs workflow, which allowed a threat actor to compromise ...