Posts tagged with: github actions

BREAKING: Massive CI/CD Pipeline Injection Attack Compromises 10,000+ Repositories

A sophisticated supply chain attack targeting CI/CD pipelines has compromised over 10,000 GitHub repositories. The attack, dubbed 'PipelinePhantom,' exploits a previously unknown vulnerability in how GitHub Actions handles workflow file parsing.