A github.dev flaw could let attackers steal GitHub OAuth tokens through a one-click attack, exposing private repositories and codebases.

The post New GitHub Zero-Day Exposed Developer Tokens to Attackers appeared first on TechRepublic.

Joseph Ofonagoro

Source: TechRepublic
Source Link: https://www.techrepublic.com/article/news-github-dev-vscode-webview-oauth-token-vulnerability/