How We Exploited CodeRabbit: From a Simple PR to RCE and Write Access on 1M Repositories

⁨10⁩ ⁨likes⁩

Submitted ⁨⁨3⁩ ⁨days⁩ ago⁩ by ⁨cm0002@piefed.world⁩ to ⁨cybersecurity@infosec.pub⁩

https://research.kudelskisecurity.com/2025/08/19/how-we-exploited-coderabbit-from-a-simple-pr-to-rce-and-write-access-on-1m-repositories?=0

Comments

Sort:hotnew top

MadMadBunny@lemmy.ca ⁨3⁩ ⁨days⁩ ago
You did WHAT?!?

source
- starshipwinepineapple@programming.dev ⁨3⁩ ⁨days⁩ ago
  Username checks out
  
  source