GitHub supply chain attack sees thousands of tokens and secrets stolen in GhostAction campaign

Thousands of secrets such as PyPI and AWS keys, GitHub tokens, and more, were stolen recently during a supply-chain attack against GitHub, dubbed ‘GhostAction’. The attack was spotted by security ...
Bleeping Computer

GitHub Actions artifacts found leaking auth tokens in popular projects

Multiple high-profile open-source projects, including those from Google, Microsoft, AWS, and Red Hat, were found to leak GitHub authentication tokens through GitHub Actions artifacts in CI/CD ...

ChatGPT will let your team collaborate via 'shared projects' - and other work-friendly updates

OpenAI's chatbot can now automatically pull info from apps like Gmail and DropBox, among other perks. Here's who gets to try them first.
GIGAZINE

'Map of GitHub' maps over 400,000 GitHub projects to clearly show the relationships between projects

When you access the 'Map of GitHub,' you will see the following screen. According to Kashcha, the names of countries on the map, such as 'PlusPlus Nation,' 'Pythonia,' and 'PowerShell Land,' are ...