#bugbounty

11 posts with this tag.

Angular Supply Chain Compromise

cache-poisoning githubactions bugbounty

Turning Almost Nothing into a Supply Chain Compromise of Angular with GitHub Actions Cache Poisoning

Copilot or Coconspirator - Tricking GitHub Copilot and Stealing all Your Secrets

Who's SHA is it Anyway: Bypassing Google Cloud Build Comment Control for $30,000

dependabot-image

bugbounty cicd github

Watch your Dispatch: Race Condition in Dependabot Core CI

bugbounty cicd githubactions

Release-Drafter To google/accompanist Compromise: VRP Writeup

bugbounty github githubactions

BlackHat 2024 and DEF CON 32 Preview

designer

bugbounty cicd github

The Monsters in Your Build Cache - GitHub Actions Cache Poisoning

bugbounty cicd github

An Obscure Actions Workflow Vulnerability in Google's Flank

12885-1

bugbounty cicd github

Web3''s Achilles'' Heel: A Supply Chain Attack on Astar Network

blog_square

bugbounty cicd github

One Supply Chain Attack to Rule Them All - Poisoning GitHub's Runner Images

bugbounty cicd security

Welcome to my blog - there is more to come!

← View all posts