GitHub RepoJacking
Everything I do professionally is around helping engineers create amazing applications that are both secure and reliable. Thatβs why I build engineering tools and educational content that simplify application security.
Throughout my career, I have performed security audits for private and open-source projects, and have found critical vulnerabilities in Google and Mozilla products. I have also taught security to hundreds of engineers and students, while I have also been an external lecturer and Ph.D. candidate in computer science at the Technical University of Denmark.
Here are some of the things Iβm working on right now:
- Developing a tool π οΈ that helps software engineers build applications which comply with privacy requirements
- Creating weekly educational content on application security using comic art π¦
- Creating a blog π on security at securingbits.com
If youβre interested in learning more about application security, Iβd love to hear from you. Feel free to send me a message, and make sure to follow me so I can make security easy for you π
Have you heard of GitHub RepoJacking? π
Ilay Goldman (@goldmanilay) and Yakir Kadkoda (@YakirKad) from the Aqua Security Team have discovered 37k vulnerable repositories that are at risk of RepoJacking, posing a significant threat to organizations.
