Compromising ByteDance’s Rspack using GitHub Actions Vulnerabilities
![Figure 1: We observed that the “Release Canary” workflow was configured to run on issue comment and would execute if the issue comment contained the keyword “!canary”.](https://www.praetorian.com/wp-content/uploads/2024/06/1-release-canary-workflow-1024x805.png)
Recently, we identified several critical Pwn Request vulnerabilities within GitHub Actions used by the Rspack repository. These vulnerabilities could allow an external attacker to submit a malicious pull request, without the requirement of being a prior contributor to the repository, and compromise the following secrets…