News

SecurityWeek1d

GitHub Workflows Attack Affects Hundreds of Repos, Thousands of Secrets

A supply chain attack involving malicious GitHub Action workflows has impacted hundreds of repositories and thousands of ...
ZDNet2y

GitHub built a new search engine for code 'from scratch' in Rust

GitHub built a new code-focused search engine in Rust because popular text search engines couldn't scale enough.

Hackers steal 3,325 secrets in GhostAction GitHub supply chain attack

A new supply chain attack on GitHub, dubbed 'GhostAction,' has compromised 3,325 secrets, including PyPI, npm, DockerHub, ...
Security Boulevard4d

The GhostAction Campaign: 3,325 Secrets Stolen Through Compromised GitHub Workflows

On September 5, 2025, GitGuardian discovered GhostAction, a massive supply chain attack affecting 327 GitHub users across 817 ...
InfoWorld3y

GitHub adds supply chain security tools for Rust language

GitHub’s supply chain security features including the advisory database, Dependabot alerts, and dependency graph are now available for Rust Cargo files.
InfoQ3y

GitHub Extends Its Supply Chain Security to Rust - InfoQ

GitHub has brought Rust support to its supply chain security feature. Aimed to ensure your project and its dependencies are free of vulnerabilities, GitHub supply chain security includes a ...

Microsoft is turning Rust into a first-class language for developing secure Windows drivers

Microsoft began adopting Rust for core Windows programming a few years ago, praising the relatively new language as a key tool for reducing bugs and enhancing ...
InfoQ17d

AWS Lambda Adds Support for GitHub Actions

AWS has recently announced that AWS Lambda now supports GitHub Actions, providing a simplified way to deploy changes to ...

AppJet.ai Launches: A GitHub-Native AI That Codes Full-Stack From Prompt to Deploy

PALO ALTO, CA / ACCESS Newswire / August 27, 2025 / FlashDrive INC today announced the public launch of AppJet.ai, an AI ...