Although GHSA-67f2-674w-6g63 was found to have ultimately resulted in no practical impact, the audit has exposed systemic risks to the security of our GitHub infrastructure. I’m opening this and the linked issues to track our progress addressing them.
cc @NixOS/org @NixOS/security @NixOS/nixpkgs-ci
Although GHSA-67f2-674w-6g63 was found to have ultimately resulted in no practical impact, the audit has exposed systemic risks to the security of our GitHub infrastructure. I’m opening this and the linked issues to track our progress addressing them.
cc @NixOS/org @NixOS/security @NixOS/nixpkgs-ci