@GHSecurityLab profile picture
GitHub Security Lab @GHSecurityLab

GitHub Security Lab’s mission is to inspire and enable the community to secure the open source software we all depend on.

Joined October 2019
  • Tweets 1,453
  • Following 15
  • Followers 26,603
215 Photos and videos
Pinned Tweet
GitHub Security Lab
@GHSecurityLab
14 Feb 2025
Find the GitHub Security Lab now on LinkedIn, Mastodon and Bluesky! 👇
7
7
8
7,279
Find the GitHub Security Lab now on LinkedIn, Mastodon and Bluesky! 👇
7
7
8
7,279
more replies
Mastodon: infosec.exchange/@GitHubSecu…

GitHub Security Lab (@GitHubSecurityLab@infosec.exchange)

107 Posts, 2 Following, 399 Followers · https://securitylab.github.com/

infosec.exchange
1
2
1
4,425
Bluesky: bsky.app/profile/securitylab…

1
2
5
3,091
GHSL-2024-323: Denial of Service (DoS) in snapcraft securitylab.github.com/advis…

GHSL-2024-323: Denial of Service (DoS) in snapcraft

A snap with a crafted yaml file can cause a Denial of Service (DoS) in snapcraft.

securitylab.github.com
5
5
5
3,029
GHSL-2024-296: Deserialization of untrusted data in Kykms securitylab.github.com/advis…

GHSL-2024-296: Deserialization of untrusted data in Kykms

Kykms is affected by a Deserialization of Untrusted Data vulnerability due to the usage of the outdated version of alibaba/fastjson library.

securitylab.github.com
2
7
1,982
GHSL-2024-273: ReDoS in remove_html_tags of Gradio securitylab.github.com/advis…

GHSL-2024-273: ReDoS in remove_html_tags of Gradio

remove_html_tags uses a regex that has a ReDoS vulnerability.

securitylab.github.com
1
9
1,507
GitHub Security Lab retweeted
Michael Stepankin@artsploit
22 Jan 2025
Last year, I committed to uncovering critical vulnerabilities in Maven repositories. Now it’s time to share the findings: RCE in Sonatype Nexus, Cache Poisoning in JFrog Artifactory, and more! Read it all below 🧵
7
80
296
30,460
GHSL-2024-327: Poisoned Pipeline Execution (PPE) in Microsoft FluentUI securitylab.github.com/advis…

GHSL-2024-327: Poisoned Pipeline Execution (PPE) in Microsoft FluentUI

The pr-website-deploy-comment workflow of Microsoft FluentUI is vulnerable to Poisoned Pipeline Execution (PPE).

securitylab.github.com
1
1
7
1,529
GHSL-2024-254: Poisoned Pipeline Execution (PPE) in Amplification leading to potential acccount takeover securitylab.github.com/advis…

GHSL-2024-254: Poisoned Pipeline Execution (PPE) in Amplification leading to potential acccount...

Amplification is vulnerable to Poisoned Pipeline Execution (PPE) allowing malicious actors to take over the repository.

securitylab.github.com
3
10
1,308
How to secure your GitHub Actions workflows with CodeQL. Dive into this actionable supply chain security research from @pwntester . This work resulted in dozens of high impact supply chain findings and, most importantly, added CodeQL support for your GitHub workflows! github.blog/security/applica…
6
15
53
5,723
GitHub Security Lab retweeted
Benson Liu@bliutech
30 Dec 2024
Ever wanted to learn fuzzing?!?! 🐛 Me and some other folks at @pbrucla recently ran a project where we taught folks about the basics of fuzzing with Honggfuzz. 👀 Some fun activities inspired by the Fuzzing101 repo from the folks at @GHSecurityLab! 🤗 github.com/pbrucla/fuzzing-l…

GitHub - pbrucla/fuzzing-lab: 🐛 UCLA ACM Cyber's Fuzzing Lab

🐛 UCLA ACM Cyber's Fuzzing Lab. Contribute to pbrucla/fuzzing-lab development by creating an account on GitHub.

github.com
3
54
247
13,493
GHSL-2024-303: Code execution in trusted context via a GitHub Action of Tribler securitylab.github.com/advis…

GHSL-2024-303: Code execution in trusted context via a GitHub Action of Tribler

Checking out of untrusted branch allows code execution in trusted context in the pr-comment-validate Action

securitylab.github.com
1
8
1,002
GHSL-2024-173: Environment Variable injection in a Feign GitHub Actions workflow securitylab.github.com/advis…

GHSL-2024-173: Environment Variable injection in a Feign GitHub Actions workflow

Feign’s comment-pr.yml workflow is vulnerable to Environment Variable injection which may lead to Repository takeover.

securitylab.github.com
1
6
1,274
🎉 Excited to announce the launch of CodeQL Community Packs for Security teams and researchers! 🚀 Supercharge your code analysis with new Query, Model, and Library packs, to find more vulnerabilities, accelerate codebases audit, and secure code effortlessly. github.blog/security/vulnera…

Announcing CodeQL Community Packs

We are excited to introduce the new CodeQL Community Packs, a comprehensive set of queries and models designed to enhance your code analysis capabilities. These packs are tailored to augment…

github.blog
1
12
39
4,991
GHSL-2024-091_GHSL-2024-092: DNS rebinding attacks against Home-gallery - CVE-2024-53275, CVE-2024-53276 securitylab.github.com/advis…

GHSL-2024-091_GHSL-2024-092: DNS rebinding attacks against Home-gallery - CVE-2024-53275, CVE-202...

Home-gallery is vulnerable to DNS rebinding attacks and implements a broad CORS policy that may make it vulnerable to present or future attacks.

securitylab.github.com
1
2
9
1,314
GHSL-2024-075_GHSL-2024-076: Stored Cross-Site Scripting (XSS) and Remote Code Execution (RCE) via Velocity Template Evaluation in Sonatype Nexus 2 securitylab.github.com/advis…

GHSL-2024-075_GHSL-2024-076: Stored Cross-Site Scripting (XSS) and Remote Code Execution (RCE) via...

Sonatype Nexus 2 is affected by multiple high severity vulnerabilities, including Stored Cross-Site Scripting (XSS) and Remote Code Execution (RCE) via Velocity Template Evaluation.

securitylab.github.com
1
11
1,134
GHSL-2024-072_GHSL-2024-074: Stored Cross-Site Scripting (XSS), Arbitrary File Upload, and Arbitrary File Read/Write via Path Traversal in Reposilite - CVE-2024-36115, CVE-2024-36116, CVE-2024-36117 securitylab.github.com/advis…

GHSL-2024-072_GHSL-2024-074: Stored Cross-Site Scripting (XSS), Arbitrary File Upload, and Arbitr...

Reposilite is affected by multiple high severity vulnerabilities, including Stored Cross-Site Scripting (XSS) allowing unauthenticated users to steal the victim’s password from the browser’s local...

securitylab.github.com
1
5
878
GitHub Security Lab retweeted
GitHub
@github
18 Dec 2024
A new free tier of GitHub Copilot in @code. ✅ 2,000 code completions per month 💬 50 chat messages per month 💫 Models like Claude 3.5 Sonnet or GPT-4o ♥️ More fun for you Check it out today! Oh yeah, and we passed 150M developers on GitHub 💅 github.blog/news-insights/pr…

Announcing 150M developers and a new free tier for GitHub Copilot in VS Code

Come and join 150M developers on GitHub that can now code with Copilot for free in VS Code.

github.blog
106
624
2,645
3,081,464
🎉 You can now enable code scanning in your GitHub Actions workflow files! ✅ By opting-in to this feature, you can enhance the security of repositories using GitHub Actions. github.blog/changelog/2024-1…

Find and fix Actions workflows vulnerabilities with CodeQL (Public Preview) - GitHub Changelog

You can now enable code scanning in your GitHub Actions workflow files. By opting-in to this feature, you can enhance the security of repositories using GitHub Actions. Actions analysis support…

github.blog
7
18
5,635
Load more