1. Runner Guard Flags Obfuscated Payload Execution in 36 GitHub Actions Workflows: 38 High-Severity IOC Matches
A sweeping static-analysis scan by Runner Guard has uncovered 38 high-severity instances of suspicious payload execution patterns embedded across 36 unique GitHub Actions workflows. Rule RGS-018 triggered on code blocks in repository `run:` directives that match known indicators of compromise (IOCs) drawn from active s...