Tech Times

Lawmakers Demand Answers as CISA Scrambles to Contain Catastrophic GitHub Credential Leak

CISA GitHub credential leak exposed AWS GovCloud admin keys, plaintext passwords, and an RSA private key for six months via a ...

This AI-coded malware apparently leaked its own GitHub private token

Whoopsie.
Morning Overview on MSN

A Gitea container flaw just surfaced that lets anyone on the internet pull private container images — more than 30,000 deployments have been exposed for almost f…

For close to four years, a default configuration in Gitea’s built-in container registry has allowed anyone on the internet to ...
Visual Studio Magazine

VS Code 1.122 Lets BYOK Work Without GitHub Sign-In

Microsoft's May 2026 VS Code update makes BYOK usable in restricted environments while adding agent, browser and issue-reporting updates.
Tech Times

Gitea Flaw Left 30,000 Deployments’ Private Container Images Readable for 4 Years

Gitea vulnerability CVE-2026-27771 let anyone pull private container images from 30,000-plus self-hosted deployments with no ...

Megalodon cyberattack infects 5,500 GitHub open-source repositories with malware, researchers say

Security researchers say 5,500 GitHub repositories have been affected by the attack.