Sometime in early 2026, a software developer did what millions of programmers do every week: updated a dependency. The ...

GitHub has said it found about 3,800 internal repositories accessed in the breach and stressed that these contained its own code rather than customer projects. The ...

Megalodon pushed 5,718 malicious GitHub commits in 6 hours, exposing CI secrets and cloud credentials at scale.

Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public ...

CISA contractor exposed AWS government credentials and internal passwords on public GitHub for 6 months, revealing critical ...

CoinbaseCartel somehow obtained an access token and used it to steal files from the GitHub environment.

JetBrains warned customers to patch a critical vulnerability that impacts users of its IntelliJ integrated development environment (IDE) apps and exposes GitHub access tokens. Tracked as ...

GitHub shared the timeline of breaches in April 2022, this timeline encompasses the information related to when a threat actor gained access and stole private repositories belonging to dozens of ...

Grafana Labs disclosed that hackers have downloaded its source code after breaching its GitHub environment using a stolen ...

Community driven content discussing all aspects of software development from DevOps to design patterns. One of the ongoing challenges DevOps professionals face when developing continuous integration ...