#gitsecurity

Offensive Sequence

@offseq.bsky.social

1 week ago

CVE-2026-30832: CWE-918: Server-Side Request Forgery (SSRF) in charmbracelet sof The vulnerability CVE-2026-30832 affects charmbracelet's soft-serve, a self-hosted Git server designed for command-line use. Versions from 0.6.0 to before 0.11.4 contain a Server-Side Request Forgery (SSRF) flaw categorized under CWE-918. A

CRITICAL: SSRF in charmbracelet soft-serve (0.6.0 – 0.11.4) lets SSH users access internal services via crafted LFS endpoints. Upgrade to 0.11.4+ now! radar.offseq.com/threat/cve-2026-30832-cw... #OffSeq #SSRF #GitSecurity

roxsross

@roxsross.bsky.social

1 month ago

🔧 Configuración Errónea en Webhooks de AWS CodeBuild Puso en Riesgo Accesos de Admin

AWS corrigió fallos en filtros de webhooks que podían permitir acceso no autorizado

devops.com/aws-codebuild-webhook-mi...

#CodeBuild #CI_CD #GitSecurity #RoxsRoss

CyberMaterial

@cybermaterial.bsky.social

2 months ago

Target Dev Server Offline After Hack
Read More: buff.ly/9lAkaT2

#TargetBreach #SourceCodeLeak #DevSecOps #GitSecurity #RepoExposure #SupplyChainRisk #CorporateEspionage #IncidentResponse #DataExtortion

Mark Jack

@markjackmilian.bsky.social

2 months ago

Learn how to effectively use Git push protection to remove secrets from your codebase the right way! Enhance security on Azure Active Directory with key strategies. #Cybersecurity #GitSecurity

Tom Smith

@ctsmithiii.bsky.social

5 months ago

Git Services Need Better Security. Here's How End-to-End Encryption Could Help - DevOps.com New research shows how Git services can implement efficient end-to-end encryption without sacrificing performance or compatibility.

devops.com/git-services-need-better-security-heres-how-end-to-end-encryption-could-help/ #DevOps #GitSecurity #CyberSecurity #DevSecOps #GitHub

FreelanceBar.me

@freelancebarme.bsky.social

7 months ago

Git security vulnerabilities announced Today, the Git project released new versions to address seven security vulnerabilities that affect all prior versions of Git.

New security updates for Git address seven vulnerabilities in all previous versions. Stay protected and update now. #GitSecurity #VulnerabilityFixed github.blog/open-source/git/git-secu...

Hacker News Companion

@hncompanion.com

8 months ago

Git vulnerability found: RCE during clone via malicious submodules. Issue: Git mishandles carriage returns in paths, leading to writing data to unintended locations and enabling malicious hook execution. #GitSecurity 1/6

@tomwalat.bsky.social

8 months ago

Microsoft targets 130 vulnerabilities on July Patch Tuesday | TechTarget July Patch Tuesday also introduces the next phase in the security hardening rollout for Kerberos on Windows domain controllers.

Microsoft targets 130 vulnerabilities on July Patch Tuesday techtarget.com/searchwindow... via
@techtargetnews.bsky.social
#CyberThreats #MicrosoftSecurity #ITUpdates #ITAdmins #DevSecOps
#SoftwareDevelopment #VisualStudio #GitSecurity #KerberosHardening #NetworkSecurity

CyberTaters

@potato.software

1 year ago

Clone2Leak Attacks: Exploiting Git Flaws to Steal Credentials

thedefendopsdiaries.com/clone2leak-a...

#clone2leak
#gitsecurity
#credentialleak
#potatosecurity
#infosec
#github
#vulnerability
#softwaresecurity
#authentication
#devsecops

The DefendOps Diaries

@defendopsdiaries.bsky.social

1 year ago

Clone2Leak Attacks: Exploiting Git Flaws to Steal Credentials | The DefendOps Diaries Explore Clone2Leak vulnerabilities in Git, exposing credential flaws and posing threats to software security environments.

Clone2Leak Attacks: Exploiting Git Flaws to Steal Credentials

thedefendopsdiaries.com/clone2leak-a...

#clone2leak
#gitsecurity
#credentialleak
#cybersecurity
#infosec
#github
#vulnerability
#softwaresecurity
#authentication
#devsecops