Security researchers have issued a warning that tens of thousands of public GitHub repositories are susceptible to significant supply chain attacks due to the injection of malicious code via self-hosted GitHub Actions runners.
If self-hosted runners are attached to a repository, then this new class of CI/CD attacks can be launched. According to Praetorian security researcher Adnan Khan, these are “build agents hosted by end users running the Actions runner agent on their own infrastructure.” Any workflow operating within the context of a repository can use a self-hosted runner attached to it.
This includes workflows originating from fork pull requests, which pose a serious security risk due to the possibility of running malicious code.
Read More: Major IT, Crypto Firms Exposed to Supply Chain Compromise via New Class of CI/CD Attack
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.
