Travis CI flaw exposed secrets of thousands of open source projects

Found 4 days ago at Arstechnica

A security flaw in Travis CI potentially exposed the secrets of thousands of open source projects that rely on the hosted continuous integration service. Travis CI is a software testing solution used by over 900,000 open source projects and 600,000 users. A vulnerability in the tool made it possible for secure environment variables—signing keys, access credentials, and API tokens of all public...

Read the article at Arstechnica

More Developer News