1. CakePHP CI Infrastructure Exposed: Composer Token Leakage Vulnerability Forces Security Overhaul
A critical supply-chain vulnerability has been identified in the CI infrastructure powering CakePHP organization repositories, prompting an urgent call for hardening measures across all GitHub Actions workflows. The flaw, tracked as CVE-2026-45793, enables the exposure of GitHub authentication tokens through Composer e...