Hacker News
- Popular GitHub Action tj-actions/changed-files is compromised https://semgrep.dev/blog/2025/popular-github-action-tj-actionschanged-files-is-compromised/ 163 comments
- Popular GitHub Action `tj-actions/changed-files` has been compromised with a payload that appears to attempt to dump secrets https://semgrep.dev/blog/2025/popular-github-action-tj-actionschanged-files-is-compromised/ 42 comments programming
Linking pages
- Career advice in 2025. | Irrational Exuberance https://lethain.com/career-advice-2025/ 173 comments
- Large enterprises scramble after supply-chain attack spills their secrets - Ars Technica https://arstechnica.com/information-technology/2025/03/supply-chain-attack-exposing-credentials-affects-23k-users-of-tj-actions/ 8 comments
Related searches:
Search whole site: site:semgrep.dev
Search title: Semgrep | 🚨 Popular GitHub Action tj-actions/changed-files is compromised
See how to search.