Tag: github
-
The Monsters in Your Build Cache – GitHub Actions Cache Poisoning
GitHub Actions caching has some insecure design decisions that allow for some unique attacks. It’s considered working as intended, but there are many ways it can go wrong. Learn how I identified Actions cache poisoning vulnerabilities in a handful of open-source projects.
-
Web3’s Achilles’ Heel: A Supply Chain Attack on Astar Network
Web3 has a weakness, and that is CI/CD security. Learn how I responsibly disclosed a Critical vulnerability in Astar Network’s GitHub repository that would have allowed attackers to conduct a serious attack on the network, and how their security team handled it.
-
CVE-2023-49291 and More – A Potential Actions Nightmare
I’ve been doing a lot of scanning and reporting of GitHub Actions injection and pwn request vulnerabilities throughout GitHub over the last year. Back in November, I discovered vulnerabilities in a reusable action used by thousands, which could be backdoored by anyone with a specially crafted pull request and used.…