News
4hon MSN
GitHub supply chain attack sees thousands of tokens and secrets stolen in GhostAction campaign
Thousands of secrets such as PyPI and AWS keys, GitHub tokens, and more, were stolen recently during a supply-chain attack ...
A new supply chain attack on GitHub, dubbed 'GhostAction,' has compromised 3,325 secrets, including PyPI, npm, DockerHub, ...
A supply chain attack involving malicious GitHub Action workflows has impacted hundreds of repositories and thousands of ...
Discover how GitHub’s Spec-Kit and AI integration are improving software development with smarter, spec driven, streamlined workflows.
Attackers abused GitHub Actions workflows to siphon off thousands of credentials from hundreds of npm and PyPI repositories.
GitHub is now also a CVE CNA and can issue its own CVE numbers for bugs disclosed in projects hosted on the platform.
Discover how GitHub's SpecKit transforms AI coding with spec-driven development, offering reliability, efficiency, and seamless workflows.
Thousands of open-source code repositories on GitHub could be vulnerable to an old exploit, according to a report from Aqua Security Software Ltd.’s Nautilus research team published this week ...
Announced in beta at GitHub Universe 2021, GitHub Projects is now generally available, including new features for issue grouping and pivoting, metadata customization, charting, and improved ...
What are the hottest projects on GitHub? With some help from the GitHub Archive, FastCoLabs tracked down the most starred, forked, and watched projects so far this year.
Results that may be inaccessible to you are currently showing.
Hide inaccessible results
Feedback