fromInfoQ
12 hours agoInformation security
Two Missing Characters: How a Regex Flaw Exposed AWS GitHub Repos to Supply-Chain Risk
A regex misconfiguration in AWS CodeBuild webhook filters allowed attacker-controlled GitHub actor IDs to hijack AWS-managed repositories, leak credentials, and risk AWS Console supply-chain compromise.