The discovery by Palo Alto Networks' Unit 42 prompted action by owners of popular repositories where secrets were leaked through GitHub Actions artifacts.

GitHub has a problem with inauthentic "stars" used to artificially inflate the popularity of scam and malware distribution repositories, helping them reach more unsuspecting users.

The Computer Weekly Developer Network and Open Source Insider blog columns seek to uncover some of the most vibrant projects gaining traction and interest on GitHub through 2019 and onwards. As ...

Cybercriminals have found another way to spread their malware: uploading cryptocurrency mining code to GitHub, according to security researchers at security company Avast. Developers 'fork ...