All news

CI/CD Security

(3 articles)
Google Fixes CVSS 10 Gemini CLI RCE and Cursor Flaws

April 30, 2026

Google Fixes CVSS 10 Gemini CLI RCE and Cursor Flaws

Google patched critical CVSS 10 RCE flaws in Gemini CLI and Cursor. Here's what developers need to know about the CI pipeline code execution risk.

TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials

March 24, 2026

TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials

TeamPCP compromised Checkmarx GitHub Actions pipelines using stolen CI credentials - here is what happened and how to lock down your own pipelines.

Weekly Recap: CI/CD Backdoor, FBI Buys Location Data, WhatsApp Ditches Numbers & More

March 23, 2026

Weekly Recap: CI/CD Backdoor, FBI Buys Location Data, WhatsApp Ditches Numbers & More

This week: a CI/CD pipeline backdoor shakes DevSecOps, the FBI quietly buys location data, and WhatsApp drops phone number IDs. Here's what developers need to know.