URL details: blog.teddykatz.com/2021/03/17/github-actions-write-access.html
URL title:
Stealing arbitrary GitHub Actions secrets | Teddy Katz’s Blog
URL description:
I’m a big fan of the “try weird stuff and see what happens” approach to security research. Modern software has a huge number of bugs, and engineering teams often have to prioritize which bugs to fix, based in part on the number of users affected by each bug. The result is that glaringly obvious bugs (say, a website being down) tend to get fixed very quickly. On the other hand, a bug that only occurs in exceedingly unusual circumstances, and has no obvious security impact, can stick around for a long time. O
URL last crawled:
2023-01-09
URL speed:
1.110 MB/s,
downloaded in 0.030 seconds
We found no external links pointing to this url.