supply-chain-security
GitHub Checkout v7 Blocks Pwn Request Attacks: Secure by Default
GitHub actions/checkout v7 now blocks pwn request attacks by default. Learn how the pull_request_target exploit worked, what changes, and what supply chain gaps remain.