A supply chain attack called GhostAction has enabled threat actors to steal secrets and exploit them.

The post GitHub Workflows Attack Affects Hundreds of Repos, Thousands of Secrets appeared first on SecurityWeek.