CICD – NuclearCoffee

Hacker news

Securing CI/CD workflows with Wazuh

On May 21, 2025 6:02 pm, by NuclearCoffee

Continuous Integration and Continuous Delivery/Deployment (CI/CD) refers to practices that automate how code is developed and released to different environments. CI/CD pipelines are fundamental in modern software development,… Continue reading

Hacker news

Coinbase Initially Targeted in GitHub Actions Supply Chain Attack; 218 Repositories' CI/CD Secrets Exposed

On Mar 23, 2025 7:40 am, by NuclearCoffee

The supply chain attack involving the GitHub Action “tj-actions/changed-files” started as a highly-targeted attack against one of Coinbase’s open-source projects, before evolving into something more widespread in scope…. Continue reading

Hacker news

GitHub Action Compromise Puts CI/CD Secrets at Risk in Over 23,000 Repositories

On Mar 17, 2025 11:14 am, by NuclearCoffee

Cybersecurity researchers are calling attention to an incident in which the popular GitHub Action tj-actions/changed-files was compromised to leak secrets from repositories using the continuous integration and continuous… Continue reading

Tag: CICD

Securing CI/CD workflows with Wazuh

Coinbase Initially Targeted in GitHub Actions Supply Chain Attack; 218 Repositories' CI/CD Secrets Exposed

GitHub Action Compromise Puts CI/CD Secrets at Risk in Over 23,000 Repositories

Stay Connected