GitHub 'Verified' Commits Can Be Rewritten Into New Hashes Without Breaking Signatures

A vulnerability has been discovered in GitHub's commit verification process, allowing unsigned commits to be rewritten with new hashes while retaining valid signatures, which undermines the uniqueness

Original source: The Hacker News

LIVETHREAT WIRE
News
Partner Lens
?
Sign upSave your progress
Partner Lens active — NorthGate Security. Reviews & Academy vendor maps reflect their stack.remove