1. GitHub Actions Security Flaw Exposes 1,451 Workflows to Unauthorized Trigger Risk
A critical authorization bypass vulnerability has been identified in GitHub Actions workflows, affecting at least 1,451 deployments across 16 distinct workflow configurations. The flaw, designated RGS-004, permits any GitHub user—including unauthenticated external parties—to trigger privileged CI/CD operations by simpl...