A newly disclosed high-risk CI/CD security issue dubbed “Cordyceps” could allow attackers to take control of affected open-source code repositories using only a free GitHub account, according to a post by SlowMist’s chief information security officer, 23pds.
According to ChainCatcher, the researcher disclosure said the issue was tested and found to affect open-source repositories associated with major organizations including Microsoft, Google, Apache, and Cloudflare.
The described attack does not require an enterprise account or any system permissions. Instead, an attacker can submit a malicious pull request and leave a comment to spoof an approval process, steal server keys, and push malicious code.
If exploited as described, the technique could enable full control over an organization’s code repository, the post said.
SlowMist CISO Says “Cordyceps” CI/CD Flaw Could Let Attackers Hijack Open-Source Repositories
2026-06-25 07:04:00
Disclaimer:
1. The information provided does not constitute investment advice. Investors should make independent decisions and bear all risks themselves.
2. The copyright of this content belongs to the original author. The views expressed herein are solely those of the author and do not represent the stance or position of this website.
Previous article:
慢雾CISO:Cordyceps CI/CD漏洞可伪造审批Next article:
欧洲央行执委:后续行动取决于中东冲突等因素
