Tag: GitHub Action
-
Hacker News: Tj-actions/changed-files GitHub Action Compromised – used by over 23K repos
Source URL: https://www.stepsecurity.io/blog/harden-runner-detection-tj-actions-changed-files-action-is-compromised Source: Hacker News Title: Tj-actions/changed-files GitHub Action Compromised – used by over 23K repos Feedly Summary: Comments AI Summary and Description: Yes Summary: A critical security incident has been identified involving the tj-actions/changed-files GitHub Action, which has been compromised to leak sensitive CI/CD secrets. This incident underscores the urgency for security and…
-
Hacker News: Popular GitHub Action tj-actions/changed-files is compromised
Source URL: https://semgrep.dev/blog/2025/popular-github-action-tj-actionschanged-files-is-compromised/ Source: Hacker News Title: Popular GitHub Action tj-actions/changed-files is compromised Feedly Summary: Comments AI Summary and Description: Yes Summary: Semgrep is a security tool that facilitates collaboration between security teams and developers, promoting a shift-left approach in software development. It emphasizes the importance of delivering actionable security insights without disrupting the development…