Popular GitHub Action Targeted in Supply Chain Attack

The GitHub action tj-actions/changed-files, used in 23,000 repositories, has been targeted by a supply chain attack. This action, popular among developers, has been compromised, putting the security of projects that use it at risk. The technical details of the attack are not specified in the article, but the potential impact is significant given the high number of affected repositories.