GitHub provided additional details into the theft of its integration OAuth tokens that occurred in April, with nearly 100,000 NPM users’ credentials.
GitHub reported that threat actors used stolen OAuth user tokens to exfiltrate private data from several organizations. GitHub uncovered threatLire la suite
Dependency Review GitHub Action scans users’ pull requests for dependency changes and will raise an error if any new dependenciesLire la suite
Google has open-sourced the Allstar tool that can be used to secure GitHub projects and prevent security misconfigurations. Google has open-sourced the Allstar toolLire la suite
Code repository hosting service GitHub announced that it has paid out more than $1.5 million through its bug bounty program sinceLire la suite
In order to improve the security of its users, the popular software code hosting service GitHub is now alerting accountLire la suite
The code hosting service GitHub added Python to the list of programming languages that it is able to auto-scan forLire la suite