A misconfigured AWS CodeBuild webhook allowed bypass of actor ID checks, risking takeover of four AWS GitHub repositories before fixes in Sep 2025.
17don MSN
Critical AWS supply chain vulnerability could have let hackers take over key GitHub repositories
The vulnerability was spotted in August 2025, so users should patch now.
Arabian Post on MSN
AWS CodeBuild flaw exposes software supply chain risk
A critical security weakness in Amazon Web Services’ CodeBuild service left GitHub repositories vulnerable to hijacking, raising fresh concerns about the resilience of cloud-based development ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results