Travis CI Flaw Leaves Open Source Projects Exposed

A security flaw in the Travis CI software-testing tool has potentially exposed the secrets of thousands of open source projects, reports Ax Sharma.

The flaw in the tool, which is used by more than 900,000 open source projects, allows secure environment variables, such as signing keys, to be exfiltrated.

Read more at Ars Technica.

Comments