Back to directory
WRITEUP #317

The Monsters in Your Build Cache – GitHub Actions Cache Poisoning

AI / LLMCI/CDSupply chain attack
by@adnanthekhan(Adnan Khan)
Bounty
1,000
Program
Google
Published
May 6, 2024
Added to HackDex
May 11, 2024
Read Full Writeuphttps://adnanthekhan.com/2024/05/06/the-monsters-in-your-build-cache-github-actions-cache-poisoning/
RELATED WRITEUPS
Revival Hijack – PyPI hijack technique exploited in the wild, puts 22K packages at risk
AI / LLMCI/CD
GitHub Actions Exploitation: Repo Jacking And Environment Manipulation
AI / LLMRepojacking
Unmasking Harmful Content in a Medical Chatbot: A Red Team Perspective
AI / LLMAI
Microsoft Copilot: From Prompt Injection to Exfiltration of Personal Information
AI / LLMAI
Google AI Studio: LLM-Powered Data Exfiltration Hits Again! Quickly Fixed.
AI / LLMAI

Built with ❤️ by Shubham Rawat