Public
- Public
- Network
- Groups
- Featured
- Popular
- People

Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://chaos.social/users/Foxboron/statuses/113606270926346514">Morten Linderud (foxboron@chaos.social)'s status on Friday, 06-Dec-2024 23:14:07 JST</a><a href="https://chaos.social/@Foxboron" title="foxboron@chaos.social"><img src="https://gnusocial.jp/avatar/28566-48-20241219185907.webp" width="48" height="48" alt="Morten Linderud" style="position: absolute; left: 0; top: 0;">Morten Linderud</a></section><article><p>I'm mind blown you can compromise a release CI/CD system with two malicious branch names. Like how.</p><p><a href="https://github.com/ultralytics/ultralytics/issues/18027" rel="nofollow noreferrer">https://github.com/ultralytics/ultralytics/issues/18027</a></p><p><a href="https://chaos.social/tags/Security" rel="tag">#Security</a> <a href="https://chaos.social/tags/SupplyChainSecurity" rel="tag">#SupplyChainSecurity</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4135340#notice-8081583">In conversation</a><time datetime="2024-12-06T23:14:07+09:00" title="Friday, 06-Dec-2024 23:14:07 JST">about 4 months ago</time> <span>from <span><a href="https://chaos.social/@Foxboron/113606270926346514" rel="external" title="Sent from chaos.social via ActivityPub">chaos.social</a></span></span><a href="https://chaos.social/@Foxboron/113606270926346514">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Morten Linderud (foxboron@chaos.social)'s status on Friday, 06-Dec-2024 23:14:07 JST Morten Linderud
I'm mind blown you can compromise a release CI/CD system with two malicious branch names. Like how.
https://github.com/ultralytics/ultralytics/issues/18027
#Security #SupplyChainSecurity
In conversationabout 4 months ago from chaos.socialpermalink

Public

Embed Notice

HTML Code

Corresponding Notice