Abusing GitHub flaw could compromise GitLab

Open-source DevOps software project GitLab has also been impacted by the same security issue in GitHub comments that has been exploited by threat actors through Microsoft repository-linked URLs to facilitate the distribution of malware that was made to seem to originate from credible entities' official source code repositories, according to BleepingComputer.

abusing bleepingcomputer code code repositories comments compromise devops distribution entities exploited flaw github gitlab issue malware microsoft network security official project repositories repository security software source code third-party-code threat threat actors urls