all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

GitHub Security Lab audited DataHub: Here’s what they found

Add to bookmarks
March 3, 2023, 7:53 p.m. | Alvaro Munoz

The GitHub Blog: Security News and Updates github.blog

The GitHub Security Lab audited DataHub, an open source metadata platform, and discovered several vulnerabilities in the platform's authentication and authorization modules. These vulnerabilities could have enabled an attacker to bypass authentication and gain access to sensitive data stored on the platform.

access authentication authorization bypass data github github security lab lab metadata modules open source platform security sensitive data vulnerabilities

Visit resource

More from github.blog / The GitHub Blog: Security News and Updates

Introducing Artifact Attestations–now in public beta 4 days, 23 hours ago | github.blog
actions artifact beta blog +7
Where does your software (really) come from? 6 days, 23 hours ago | github.blog
blog capabilities community github +11
CodeQL zero to hero part 3: Security research with CodeQL 1 week, 1 day ago | github.blog
blog codeql github github security lab +6
Securing millions of developers through 2FA 1 week, 6 days ago | github.blog
2fa adoption developers ecosystem +9
Security research without ever leaving GitHub: From code scanning to CVE via Codespaces and private … 1 month ago | github.blog
blog blog post code codeql +16
Gaining kernel code execution on an MTE-enabled Pixel 8 1 month, 2 weeks ago | github.blog
android app arm arm mali +22
Keeping secrets out of public repositories 2 months, 1 week ago | github.blog
blog default developers github +10
How to stay safe from repo-jacking 2 months, 2 weeks ago | github.blog
attack blog blog post can +10
Build code security skills with the GitHub Secure Code Game 2 months, 3 weeks ago | github.blog
actions blog build challenges +18

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Information System Security Officer (ISSO)

@ LinQuest | Boulder, Colorado, United States
View on infosec-jobs.com

Project Manager - Security Engineering

@ MongoDB | New York City
View on infosec-jobs.com

Security Continuous Improvement Program Manager (m/f/d)

@ METRO/MAKRO | Düsseldorf, Germany
View on infosec-jobs.com

Senior JavaScript Security Engineer, Tools

@ MongoDB | New York City
View on infosec-jobs.com

Principal Platform Security Architect

@ Microsoft | Redmond, Washington, United States
View on infosec-jobs.com

Staff Cyber Security Engineer (Emerging Platforms)

@ NBCUniversal | Englewood Cliffs, NEW JERSEY, United States
View on infosec-jobs.com
View more jobs