Hacking News TensorFlow CI/CD Flaw Exposed Supply Chain to Poisoning Attacks

Hacking News TensorFlow CI/CD Flaw Exposed Supply Chain to Poisoning Attacks - Printable Version

+- (https://hackmyride.com/forum)
+-- Forum: Automotive Hacking (https://hackmyride.com/forum/forumdisplay.php?fid=211)
+--- Forum: News (https://hackmyride.com/forum/forumdisplay.php?fid=278)
+---- Forum: The Hacker News (https://hackmyride.com/forum/forumdisplay.php?fid=279)
+---- Thread: Hacking News TensorFlow CI/CD Flaw Exposed Supply Chain to Poisoning Attacks (/showthread.php?tid=12498)

TensorFlow CI/CD Flaw Exposed Supply Chain to Poisoning Attacks - The Hacker News - 01-25-2024

TensorFlow CI/CD Flaw Exposed Supply Chain to Poisoning Attacks

Continuous integration and continuous delivery (CI/CD) misconfigurations discovered in the open-source TensorFlow machine learning framework could have been exploited to orchestrate supply chain attacks.
The misconfigurations could be abused by an attacker to "conduct a supply chain compromise of TensorFlow releases on GitHub and PyPi by compromising TensorFlow's build agents via

https://thehackernews.com/2024/01/tensorflow-cicd-flaw-exposed-supply.html