GitHub
-
Cybersecurity
GitHub supply chain attack cloned thousands of projects, spoofed genuine users
"No-one has the time or sanity to audit every thing every build process pulls in."
Read More » -
Cybersecurity
Heroku’s GitHub connection remains on ice after breach as customers fret, eye alternatives
Several weeks after a major security incident at Heroku, the company said this week it “will not be reconnecting to…
Read More » -
Cybersecurity
GitHub hacked, npm data stolen after 0auth tokens stolen in upstream breach
GitHub hacked after Heroku, Travis-CI 0auth tokens stolen in upstream attack
Read More » -
Enterprise IT
GitHub adds welcome option to scan for secrets BEFORE Git pushes
For repo security, take a look at Palantir's open source Policy Bot too...
Read More »