From Cybersecurity Help – GitHub action compromise exposes secret tokens in build logs

Vulnerabilities

From Cybersecurity Help – GitHub action compromise exposes secret tokens in build logs

shaikh Saqib March 17, 2025

The attack, which occurred sometime before March 14, 2025, involved a threat actor modifying the code of the tj-actions/changed-files GitHub Action.

AWS access key leak breaches CI/CD pipeline security CI/CD security incident compromised CI/CD pipelines compromised GitHub bot account CVE-2025-30066 cyber awareness cyber defense cyber protection cyberattacks cybersecurity data leaks digital privacy GitHub Actions security breach GitHub Gist malware GitHub PAT security risk GitHub repository attack GitHub secrets exposure GitHub token compromise hacks infosec leaked RSA private keys malicious GitHub Action network security note online security preventing GitHub supply chain attacks.Python script dumping secrets secret exposure in build logs security best practices for GitHub Actions security incidents security perspective supply chain attack on GitHub threat threat intelligence threat note threatnote tj-actions/changed-files vulnerability

Last updated on March 19, 2025