In GitHub Actions, the pull_request trigger prompts the workflow to execute within the context of the forked branch, creating a GITHUB_TOKEN that has only read access to the main repository.

Artifact Poisoning in GitHub Actions Imports Malware via Software Pipelines A vulnerability discovered in GitHub Actions could allow an attacker to poison a developer's pipeline, highlighting the ...

A threat group dubbed “Banana Squad,” active since April 2023, has trojanized more than 60 GitHub repositories in an ongoing campaign, offering Python-based hacking kits with malicious payloads.