Malicious bot harvested GitHub tokens

Claire Aird reports an automated bot that exploited CI/CD misconfigurations to inject malicious payloads into repos.

Play episode from 05:59

Transcript

The AI-powered Podcast Player

Save insights by tapping your headphones, chat with episodes, discover the best highlights - and more!