Forwarded from The Hacker News
🔥 10 years ago, Docker changed how we build software.
Today, Chainguard OS changes how we deliver it.
Chainguard OS:
✅ Secure upstream sources
✅ Daily updates
✅ Smaller, safer, faster
Containers evolved. Now software delivery has too.
👉 What’s next: https://thehackernews.com/2025/04/have-we-reached-distroless-tipping-point.html
Today, Chainguard OS changes how we deliver it.
Chainguard OS:
✅ Secure upstream sources
✅ Daily updates
✅ Smaller, safer, faster
Containers evolved. Now software delivery has too.
👉 What’s next: https://thehackernews.com/2025/04/have-we-reached-distroless-tipping-point.html
Forwarded from The Hacker News
👀 $0 GitHub Action ➔ $B security nightmare.
In Nov 2024, a SpotBugs maintainer accidentally leaked a GitHub access token.
⚡ Attackers exploited it—moving from SpotBugs ➔ reviewdog ➔ poisoning tj-actions/changed-files—before striking Coinbase in March 2025.
➡️ Details here: https://thehackernews.com/2025/04/spotbugs-access-token-theft-identified.html
In Nov 2024, a SpotBugs maintainer accidentally leaked a GitHub access token.
⚡ Attackers exploited it—moving from SpotBugs ➔ reviewdog ➔ poisoning tj-actions/changed-files—before striking Coinbase in March 2025.
➡️ Details here: https://thehackernews.com/2025/04/spotbugs-access-token-theft-identified.html