Hacker Times
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
ImPostingOnHN
on March 15, 2025
|
parent
|
context
|
favorite
| on:
Tj-actions/changed-files GitHub Action Compromised...
The repo looks like it uses itself in its workflows, so it's possible that the commit being merged resulted in the necessary credentials being leaked to the attacker.
rognjen
on March 15, 2025
[–]
There doesn't seem to be a PR for the commit though.
Consider applying for YC's Fall 2026 batch!
Applications
are open till July 27.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search: