home.social
Sign in Create account

#githubenterprise — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #githubenterprise, aggregated by home.social.

  1. MissConstrue @[email protected] ·

    So, #GitHub is having a rough go of it lately. With significant instability and frequent outages in the last month and platform uptime dropping below 85%.

    But the most fun trick? Any authenticated user could execute arbitrary commands on GitHub's backend servers with a single git push command - using nothing but a standard git client. (Because their architecture didn’t sterilize semicolons, thus prompt injection.)

    On GitHub Enterprise Server, the vulnerability grants full server compromise, including access to all hosted repositories and internal secrets.

    GitHub Enterprise Server customers should upgrade ASAP. Wiz dot io data indicates that 88% of instances were still vulnerable.

    wiz.io/blog/github-rce-vulnera

    #infosec #live #githubEnterprise #rce

    #github #infosec #live #githubenterprise #rce
  2. Jimmy B. :dump_truck: @[email protected] ·

    Updating my #GitHubEnterprise instance to 3.12.0 :github:

    #SysAdmin #Linux #Debian #GitHub #SystemsAdministrator :linux: :debian:

    #githubenterprise #sysadmin #linux #debian #github #systemsadministrator
  3. Jimmy B. :dump_truck: @[email protected] ·

    I finished upgrading one of my #GitHubEnterprise :github: instances this evening. It would have been done a lot sooner if I was paying attention to which file I was editing 🤦🏼‍♂️

    #Linux #SysAdmin #GitHub #SystemsAdministrator 🤓

    #githubenterprise #linux #sysadmin #github #systemsadministrator