Codecov

From wikieduonline
Revision as of 17:42, 26 August 2022 by Ant (talk | contribs)
Jump to navigation Jump to search

Security issue

Around April 2021, a supply chain attack using code auditing tool codecov allowed hackers limited access to HashiCorp's customers networks.[1] As a result private credentials were leaked. HashiCorp revoked a private signing key and asked its customers to use a new rotated key.

  1. "HashiCorp revoked private key exposed in Codecov security breach". VentureBeat. 2021-04-27. Retrieved 2021-08-03.<templatestyles src="Module:Citation/CS1/styles.css"></templatestyles>

Advertising: