GitHub

When using git module source the local repo is renamed as the module name even when a ...

May not be relavent, but here is the output of terraform init $ terraform init Initializing the backend... Initializing modules... Downloading git::https://github.com ...
GitHub

unir-tfm-devops/infra-github

infra-github/ ├── main.tf # Main Terraform configuration ├── repos.tf # General repositories configuration ├── spring-boot-repos.tf # Spring Boot specific repositories ├── nodejs-repos.tf # Node.js ...
InfoQ

新たなGit Submoduleの脆弱性にパッチが当てられた

ログインして、InfoQのすべての体験をアンロックしましょう!お気に入りの著者やトピックの最新情報を入手し、コンテンツと交流し、限定リソースをダウンロードできます。 何千人もの開発者が、InfoQのミニブック「Practical Guide to Building an API Back End with ...
Bleeping Computer

Linux wiper malware hidden in malicious Go modules on GitHub

A supply-chain attack targets Linux servers with disk-wiping malware hidden in Golang modules published on GitHub. The campaign was detected last month and relied on three malicious Go modules that ...
TechRadar

Dangerous Linux wiper malware hidden within Go modules on GitHub

Three Golang modules on GitHub were found containing dangerous malware The malware was designed to wipe the entire disk of a Linux server It was removed from the platform Dangerous Linux malware, ...
Dark Reading

10 Major GitHub Risk Vectors Hidden in Plain Sight

Risk vector: Package managers like npm, pip, Maven, and Go modules all enable pulling dependencies directly from GitHub repositories instead of official registries. Attack surface: Using mutable ...

GitHub moves to tighten npm security amid phishing, malware plague

GitHub, which owns the npm registry for JavaScript packages, says it is tightening security in response to recent attacks.