Tags: software supply chain*

0 bookmark(s) - Sort by: Date ↓ / Title /

  1. Research shows that GitHub Actions, a popular CI/CD platform, is vulnerable to typosquatting attacks, where malicious actors exploit spelling mistakes in action names to trick developers into running malicious code.
  2. Announcement of Finnix 126 release, a utility live Linux distribution. It includes fixes, new packages, and new features, such as Linux kernel 6.8, addition of 0 kernel command line option, and upstream Debian package updates. This release also provides additional 'supply chain' assurances, built on a public CI platform with ISO pointing to build information and SHA256 checksum.
    2024-07-05 Tags: , , , , by klotz

Top of the page

First / Previous / Next / Last / Page 1 of 0 SemanticScuttle - klotz.me: tagged with "software supply chain"

About - Propulsed by SemanticScuttle