15,000 Go Module Repositories on GitHub Vulnerable to Repojacking Attack
December 5, 2023 at 05:48AM Over 15,000 Go module repositories on GitHub are susceptible to “repojacking,” with vulnerabilities due to user name changes and account deletions. This exploit allows attackers to hijack supply chains by duplicating and publishing malicious modules. GitHub’s countermeasure is ineffective for Go modules, with a call for action from Go or … Read more