Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/jamieswhiteshirt/suspicious-package
A malicious npm package that exploits the default configuration of GitHub Actions and actions/checkout to write unexpected comments on pull requests
https://github.com/jamieswhiteshirt/suspicious-package
actions npm security
Last synced: about 1 month ago
JSON representation
A malicious npm package that exploits the default configuration of GitHub Actions and actions/checkout to write unexpected comments on pull requests
- Host: GitHub
- URL: https://github.com/jamieswhiteshirt/suspicious-package
- Owner: JamiesWhiteShirt
- Created: 2022-07-27T12:12:42.000Z (over 2 years ago)
- Default Branch: main
- Last Pushed: 2023-06-02T09:06:04.000Z (over 1 year ago)
- Last Synced: 2023-08-03T21:11:04.908Z (over 1 year ago)
- Topics: actions, npm, security
- Language: JavaScript
- Homepage:
- Size: 48.8 KB
- Stars: 0
- Watchers: 1
- Forks: 0
- Open Issues: 0