Secure Projects Dependencies with AWS Code Artifact

News

GitHub Actions artifacts found leaking auth tokens in popular projects

Multiple high-profile open-source projects, including those from Google, Microsoft, AWS, and Red Hat ... placing the responsibility on users to secure their artifacts. Given the situation ...

Bleeping Computer1y

Bitbucket artifact files can leak plaintext authentication secrets

Threat actors were found breaching AWS accounts using authentication secrets leaked as plaintext in Atlassian Bitbucket artifact ... code scanning with Snyk, and other supported security integrations.

CSOonline3mon

Abandoned AWS S3 buckets open door to remote code execution, supply-chain compromises

Attackers re-register abandoned AWS S3 buckets filled with malicious files that are executed by applications looking for these buckets. Code ... projects to commercial software and even security ...

ZDNet4y

More than 75% of all vulnerabilities reside in indirect dependencies

The vast majority of security vulnerabilities in open-source projects ... dependencies. When you walk the entire dependency tree, however, you find 59 sub-dependencies, and suddenly, the 80 lines ...

Some results have been hidden because they may be inaccessible to you

Show inaccessible results