Supply Chain Attack on GitHub Action Exposes Secrets in 218 Repositories

A supply chain attack has compromised the GitHub action tj-actions/changed-files, affecting 218 repositories out of the 23,000 projects using it. This attack resulted in the exposure of secrets within these repositories. The technical details and the full impact of this compromise are still being evaluated.