Security News GitHub Action hack likely led to another in cascading supply chain attack BleepingComputer Daniel Bender Mar 18, 2025 A cascading supply chain attack that began with the compromise of the "reviewdog/action-setup@v1" GitHub Action is believed to have led to the recent breach of "tj-actions/changed-files" that leaked CI/CD secrets.
