newsMar 19, 20255 minsCI/CDData BreachDeveloper CISA confirms cascading attack from reviewdog to tj-actions exposed sensitive credentials across 23,000+ repositories. A sophisticated cascading supply chain attack has compromised multiple GitHub Actions, exposing critical CI/CD secrets across tens of thousands of repositories. The attack, which originally targeted the widely used “tj-actions/changed-files” utility, is now believed to have originated from an earlier breach of the “reviewdog/action...