Information security
fromInfoQ
1 day agoAI-Powered Bot Compromises GitHub Actions Workflows Across Microsoft, DataDog, and CNCF Projects
An autonomous AI bot exploited GitHub Actions workflows across major open-source repositories, achieving remote code execution and stealing credentials with write permissions between February 21-28, 2026.