Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/Enigma/statuses/114186537372274541">Tanawts (enigma@infosec.exchange)'s status on Wednesday, 19-Mar-2025 14:49:54 JST</a><a href="https://infosec.exchange/@Enigma" title="enigma@infosec.exchange"><img src="https://gnusocial.jp/avatar/168805-48-20240121191548.webp" width="48" height="48" alt="Tanawts" style="position: absolute; left: 0; top: 0;">Tanawts</a><div><ul><li></ul></div></section><article><p><a href="https://cyberplace.social/@GossiTheDog">@GossiTheDog</a> am i tripping? Who watches the watchers?</p><p><a href="https://www.stepsecurity.io/blog/harden-runner-detection-tj-actions-changed-files-action-is-compromised" rel="nofollow">https://www.stepsecurity.io/blog/harden-runner-detection-tj-actions-changed-files-action-is-compromised</a></p><p>Github seems to only have logs for the git protocol usage itself, but I dont seem to see logs for interactions like views on the www.github.com web portal itself, eg. for things like who logged in to the web portal and viewed workflow logs that would contain base64 double encoded passwords.</p><p>Bing/CoPilot has an unsatisfactory answer as well:</p><p>"How do I audit github for people who looked at github workflow logs</p><p>Unfortunately, GitHub doesn't provide a straightforward way to see who has viewed workflow logs. Logs are generally accessible to anyone with sufficient permissions in a repository, but GitHub doesn't track or display individual views on these logs."</p><p>I don't think github logs access to github<br>I think github logs access to git</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4756834#notice-9317384">In conversation</a><time datetime="2025-03-19T14:49:54+09:00" title="Wednesday, 19-Mar-2025 14:49:54 JST">about 2 months ago</time> <span>from <span><a href="https://infosec.exchange/@Enigma/114186537372274541" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@Enigma/114186537372274541">permalink</a><h4>Attachments</h4><ol><li><article><header><div>Domain not in remote thumbnail source whitelist: github.githubassets.com</div><h5><a href="https://github.com/">GitHub: Where the world builds software</a></h5><div></div></header><div>GitHub is where over 83 million developers shape the future of software, together. Contribute to the open source community, manage your Git repositories, review code like a pro, track bugs and feat...</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Tanawts (enigma@infosec.exchange)'s status on Wednesday, 19-Mar-2025 14:49:54 JSTTanawts
- Kevin Beaumont
@GossiTheDog am i tripping? Who watches the watchers?
https://www.stepsecurity.io/blog/harden-runner-detection-tj-actions-changed-files-action-is-compromised
Github seems to only have logs for the git protocol usage itself, but I dont seem to see logs for interactions like views on the www.github.com web portal itself, eg. for things like who logged in to the web portal and viewed workflow logs that would contain base64 double encoded passwords.
Bing/CoPilot has an unsatisfactory answer as well:
"How do I audit github for people who looked at github workflow logs
Unfortunately, GitHub doesn't provide a straightforward way to see who has viewed workflow logs. Logs are generally accessible to anyone with sufficient permissions in a repository, but GitHub doesn't track or display individual views on these logs."
I don't think github logs access to github
I think github logs access to git
In conversationabout 2 months ago from infosec.exchangepermalink
Attachments
1. Domain not in remote thumbnail source whitelist: github.githubassets.com
  GitHub: Where the world builds software
  GitHub is where over 83 million developers shape the future of software, together. Contribute to the open source community, manage your Git repositories, review code like a pro, track bugs and feat...

Public

Embed Notice

HTML Code

Corresponding Notice