pull down to refresh

CISA left a GitHub repo open with passwords, keys, tokenswww.theregister.com/security/2026/05/19/americas-top-cyber-defense-agency-left-a-github-repo-open-with-with-passwords-keys-tokens-and-incredibly-obvious-filenames/5242915
626 sats \ 3 comments \ @0xbitcoiner 19 May lol
related
Supply Chain Attack in litellm 1.82.8 on PyPIfuturesearch.ai/blog/litellm-pypi-supply-chain-attack/
373 sats \ 0 comments \ @Scoresby 24 Mar devs
The end of "trust me bro" - confidential computing for everyone
787 sats \ 1 comment \ @aljaz 5 Feb tech
GitHub suffers a cascading supply chain attack compromising CI/CD secretswww.infoworld.com/article/3849245/github-suffers-a-cascading-supply-chain-attack-compromising-ci-cd-secrets.html
389 sats \ 2 comments \ @ch0k1 21 Mar 2025 security
Claude Code's GitHub Actions Vulnerability Lets Attackers Compromise Any Repocybersecuritynews.com/claude-codes-github-actions-vulnerability/amp/
202 sats \ 1 comment \ @ch0k1 3 Jun security
GitHub MCP Exploited: Accessing private repositories via MCPinvariantlabs.ai/blog/mcp-github-vulnerability
320 sats \ 0 comments \ @k00b 27 May 2025 tech
AWS Cloud Keys Found on GitHub Repositories to Run Cryptomining Operationwww.techrepublic.com/article/elektra-leak-aws-cloud-keys-crytomining/
503 sats \ 0 comments \ @0fje0 5 Nov 2023 tech
What’s the worst place to leave your secrets? – What happens to leaked AWS credscybenari.com/2024/08/whats-the-worst-place-to-leave-your-secrets/
231 sats \ 1 comment \ @aljaz 3 Sep 2024 security
GitHub MCP exploited: Accessing private repositories via MCP | Hacker Newssimonwillison.net/2025/May/26/github-mcp-exploited/
286 sats \ 1 comment \ @ch0k1 30 May 2025 news
Microsoft GitHub is under siege as security experts claim 100k vulnerable reposwww.windowscentral.com/microsoft/microsofts-github-is-under-siege-as-security-experts-claim-over-100000-github-repositories-are-infected
291 sats \ 2 comments \ @ch0k1 2 Mar 2024 bitcoin
Anyone can access deleted and private repository data on GitHubtrufflesecurity.com/blog/anyone-can-access-deleted-and-private-repo-data-github
331 sats \ 0 comments \ @hn 24 Jul 2024 tech
Multiple redhat-cloud-services npm Packages compromised - StepSecuritywww.stepsecurity.io/blog/multiple-redhat-cloud-services-npm-packages-compromised
776 sats \ 1 comment \ @winteryeti 2 Jun tech
Thousands of now-private GitHub repos can still be accessed through Copilottechcrunch.com/2025/02/26/thousands-of-exposed-github-repos-now-private-can-still-be-accessed-through-copilot/?guccounter=1
614 sats \ 1 comment \ @StillStackinAfterAllTheseYears 26 Feb 2025 security
Breaking News: Trump Signs Downsized AI Orderwww.politico.com/news/2026/06/02/trump-signs-downsized-ai-order-00946389
569 sats \ 4 comments \ @Cje95 2 Jun AI Politics_And_Law
XYZVault: The First Privacy-Focused Multisig Vault Platform
2246 sats \ 0 comments \ @xyzvault 12 Jun bitcoin
EleKtra-Leak Cryptojacking Attacks Exploit AWS IAM Credentials Exposed on GitHubthehackernews.com/2023/10/elektra-leak-cryptojacking-attacks.html?m=1
360 sats \ 0 comments \ @locomancell 31 Oct 2023 tech
Open Infrastructure Alternatives to GitHub := Discussing Motivation, Choice…github.com/the-turing-way/the-turing-way/issues/3605
1280 sats \ 0 comments \ @beyond_turbulence 24 Apr Design tech bitdevs devs
Agent that works on a forked version of a repo?
1748 sats \ 2 comments \ @justadvm 3 Nov 2024 openagents
grasp: a simple protocol for decentralized gitgitgrasp.com/
558 sats \ 0 comments \ @i_am_a_seeker 14 Jun tech nostr devs
Hackers breach CISA, forcing the agency to take some systems offline9to5mac.com/2024/03/10/security-bite-hackers-breach-cisa-forcing-the-agency-to-take-some-systems-offline/
260 sats \ 0 comments \ @beorange 11 Mar 2024 security
Claude, Gemini CLI & Copilot Vulnerable to Prompt Injection via GitHub Commentscybersecuritynews.com/prompt-injection-via-github-comments/
398 sats \ 0 comments \ @Tony 21 Apr security AI
XYZVault - "we can't see your data" vs "we won't look" which one matters to you?
23.8k sats \ 13 comments \ @xyzvault 8 Jun bitcoin