Liked
GitHub repos bombarded by info-stealing commits masked as Dependabot
![](https://www.bleepstatic.com/content/hl-images/2022/04/08/GitHub___headpic.jpg)
Post details
Hackers are breaching GitHub accounts and inserting malicious code disguised as Dependabot contributions to steal authentication secrets and passwords from developers.
![](https://www.bleepstatic.com/content/hl-images/2022/04/08/GitHub___headpic.jpg)
This post was filed under likes.
Interactions with this post
Interactions with this post
Below you can find the interactions that this page has had using WebMention.
Have you written a response to this post? Let me know the URL:
Do you not have a website set up with WebMention capabilities? You can use Comment Parade.