Technology
GitHub fixes ‘high severity’ security flaw spotted by Google – ZDNet
Two weeks after Google disclosed a security flaw in GitHub, the Microsoft-owned site has fixed the issue.
GitHub has finally fixed a high severity security flaw reported to it by Google Project Zero more than three months ago.
The bug affected GitHub’s Actions feature a developer workflow automation tool that Google Project Zero researcher Felix Wilhelm said was “highly vulnerable to injection attacks”. GitHub’s Actions support a feature called workflow commands as a communication channel between the Action runner and the executed action.
While Google described it as a ‘high severity’ bug, GitHub…
-
Noosa News15 hours agoThe grey backstreet of Brisbane’s Fortitude Valley where Arnie the missing dog was found dead in his owner Nathan McKeown’s black ute
-
Noosa News23 hours agoNT cattle rustler fined almost $430k for stealing 116 head from neighbouring station
-
Business24 hours agoRevenue growth, profit margin pressures, and a $365m buyback
-
Noosa News17 hours agoFuel tanker racing to unload in Darwin ahead of Tropical Cyclone Fina