CICI/CD News
LatestAuthorsGlossary
Tag

#vulnerability

Tagged “vulnerability”

1 article
Supply-chain security

Cordyceps and the pipeline attack surface we keep ignoring

Novee Security disclosed a CI/CD flaw pattern, Cordyceps, that an unauthenticated actor can use to plant self-propagating triggers across pipelines. The specifics matter less than the shape: pipelines keep landing on the attack surface, and organizations keep treating them like build tools.

Jul 2, 2026 · Tomás Vega
CICI/CD News

Independent CI/CD & deployment news — concise, vendor-neutral takes on pipelines, releases and DevOps tooling.

Network

GitHub ActionsJenkinsGitHubCI/CD Glossary

About

Latest newsAuthorsRSS feedSitemapPowered by Buddy